7 matches found
uint128 changeAmount might overflow
Lines of code Vulnerability details Impact This issue is an edge case, that uint128 changeAmount could overflow, making the protocol fail for certain amount of swap. Proof of Concept Let's break down the changeAmount: 1. amountOut/amountIn 2. BASE27 3. normalizer File:...
Insecure Ownership Management in DNSSECImpl.sol
Lines of code Vulnerability details Impact This finding highlights a potential security risk related to the lack of safeguards when changing ownership in the DNSSECImpl.sol contract. As it stands, the current implementation allows for the owner to be set to address0, which could result in the los...
ClearingHouse fail if too many amm whitelisted
Lines of code Vulnerability details Impact Governance can whitelist amm in ClearingHouse using the whitelistAmm function. Since a lot of function in the ClearingHouse contract will iterate each of the amm in amms and call various amm.function, if too many amm is whitelisted it is possible for tho...
Insulet Omnipod Insulin Management System Access Control Error Vulnerability
Insulet Omnipod Insulin Management System is an insulin management system from Insulet USA. An Access Control Error vulnerability exists in the Insulet Omnipod Insulin Management System, which arises from a failure of the wireless RF communication protocol to properly implement authentication or...
Target Credential Status by Authentication Protocol - No Credentials Provided
Nessus was not able to successfully authenticate directly to the remote target on an available authentication protocol. Nessus was able to connect to the remote port and identify that the service running on the port supports an authentication protocol, but Nessus failed to authenticate to the...
Target Credential Status by Authentication Protocol - Failure for Provided Credentials
Nessus failed to successfully authenticate directly to the remote target on an available authentication protocol. Nessus was able to connect to the remote port and identify that the service running on the port supports an authentication protocol, but Nessus failed to authenticate to the remote...
Error Cannot get apps from the store on Storefront
Upgraded Storefront from 3.9 to 3.11. During the test conducted I am able to successfully: - Log in via browser Chrome internally and externally and launch applications. - Open Citrix Receiver internally, log in and launch apps. What no longer works is external receiver access. On launching the...