Assessment reportsPublic findings
Back to Zellic siteBack
Assessment reports>XAUm>Medium findings>Lack of two-step ownership transfer
GeneralOverview
Findings
Medium (1)Lack of two-step ownership transfer
Low (1)
Informational (4)
DiscussionOff-chain validation
Threat ModelComponent: Minter module (minter::minter)Component: MToken module (mtoken::mtoken)
Audit ResultsAssessment Results
Category: Business Logic

Lack of two-step ownership transfer

Medium Impact
Medium Severity
Low Likelihood

Description

In the current design of ownership transfer, the owner calls both request_transfer_ownership and execute_transfer_ownership to transfer ownership. The UpgradeCap is also transferred to the new owner, so if the new owner address is an incorrect address, the ownership cannot be revoked.

Impact

If the new owner address is an incorrect address, the ownership cannot be revoked. The receiver address should be a valid address that can receive the ownership.

Recommendations

We recommend changing the design to implement a proper two-step process where the new owner calls execute_transfer_ownership to claim the ownership and UpgradeCap.

Remediation

This issue has been acknowledged by MatrixDock, and a fix was implemented in commit c4890239.

Zellic © 2025Back to top ↑