Code4renaCODE423N4:2023-10-ETHENA-FINDINGS-ISSUES-700Unchecked return value when calling ERC20's transfer function inside withdraw function of USDeSilo.sol. It is unsafe transfer of ERC20 tokens.
7.2 High
AI Score
Confidence
Low
Vulnerability details
Summary
In withdraw function of USDeSilo.sol there is one call calling ERC20 transfer function on USDe token. And itβs return value neither checked nor safeTransfer of SafeERC20 used . So whenever transfer fails then it will not revert. And result in wrong execution of withdraw function of USDeSilo.sol.
Vulnerability Details :
Since transfer is called upon USDe token which is made using openzeppelinβs ERC20 contract. So it will return true when transfer successful. It will not revert on failure.
28: function withdraw(address to, uint256 amount) external onlyStakingVault {
29: USDE.transfer(to, amount);//@audit return value should be checked OR use safeTransfer
30: }
Impact
Whenever transfer fails then it will not revert. And result in wrong execution of withdraw function of USDeSilo.sol.
Tools Used
Manual
Recommended Mitigation Steps :
Since it is USDe token which is made using openzeppelin ERC20 contract so for this return value should be checked because it will not revert on failure.
- Check return value and revert if return value is not true.
- Or use Openzeppelin Library SafeERC20βs safeTransfer function instaed of transfer function. Which will automatically revert on failure.
Assessed type
Token-Transfer
The text was updated successfully, but these errors were encountered:
All reactions
7.2 High
AI Score
Confidence
Low