Assessment reportsPublic findings
Back to Zellic site
Assessment reports>Nukem Loans>Critical findings>[FIXED] Collateral inflation attack allows for theft of funds
GeneralOverview
Findings
Critical (3)Collateral inflationFree liquidationInterest theft
High (3)
Medium (2)
Low (1)
DiscussionInitializer called in constructorBorrowing on behalf of the Market contractPotential storage-collision issueSaferERC20 additional checksEIP-712 implementationMarket setters should only be called onceUtilizing eth-brownie for testingCentralizationAMM oracle pricing
Threat ModelWhat are threat models?AbstractSwapper.solAuctions.solCollateral.solCredit.solDebt.solEIP712.solERC20Base.solERC20Permit.solEnFi4626.solLendingStrategy.solMarket.solProxyManager.solRoles.solSaferERC20.solUniswapV2Swapper.sol
Audit ResultsSummary
Category: Business Logic

[FIXED] Collateral inflation attack allows for theft of funds

Critical Severity
Critical Impact
High Likelihood

Description

The maximum withdraw amount for a user is calculated as the swappable value of their collateral minus their debt.

  function maxWithdraw(
      address account
  ) public view virtual override returns (uint256) {
...
      IDebt debt = _market.debt();
      uint256 account_debt_assets = debt.assetsOf(account);
      if (account_debt_assets == 0) return asset_balance;

      ILendingStrategy strategy = _market.strategy();
      uint256 debt_value = _market.swapper().valueOf(
          debt.asset(),
          account_debt_assets
      );
      uint256 borrowable_collateral = (asset_balance *
          strategy.maxCollateralizationRatio()) / strategy.precision();
      return
          (borrowable_collateral > debt_value)
              ? borrowable_collateral - debt_value
              : 0;
  }

Impact

It is profitable for a malicious attacker to manipulate the underlying pool in order to inflate the value of their collateral. This allows them to withdraw most of the collateral while keeping the debt that is worth more than the original collateral. As a result of this, protocol funds can be stolen.

Recommendations

Only allow withdrawal of collateral once all the debt has been paid off.

Remediation

The Nukem team has fixed this issue by removing the partial withdraw mechanism in commit 2e3ecbe0.

Zellic © 2023Back to top ↑