YieldNest – Inability to unstake required assets from Kernel The vulnerability leads to the inability to automatically withdraw WBNB from the KernelClisStrategy. Vulnerability Details The KernelClisStrategy contract is designed to stake deposited WBNB […]
YieldNest – Rate provider for ynBNBx is missing ynClisBNBk strategy The processAccounting function will revert on every invocation within the ynBNBx context Vulnerability Details The Provider contract, responsible for retrieving rates for all assets […]
YieldNest – Invalid rate for vaults The valuation of vault tokens is inaccurately represented, leading to a decreasedvalue of the assets held within the MaxVault. Vulnerability Details The rate providers […]
YieldNest – Vault not compliant with ERC4626 in maxWithdraw function This results in non-compliance with the ERC4626 standard, leading to the potentialfor withdrawal attempts based on maxWithdraw results to fail. Vulnerability Details Per the […]
YieldNest – Back-running the rewards transfer The attacker acquires rewards that are generated by other users’ capital. Vulnerability Details An attacker can unfairly gain by back-running the transfer with rewards […]
Secure Private Key Management for DApps Clear instructions and best security practices to ensure the secure usage of private keys for smart contract management. Why does private key require more […]
ERC-4626: Easy To Understand Essentials This article covers the basics of ERC4626. Take a helicopter view of how it works and what are the main security concerns that need […]
Web3 Founder: 5 questions that help improve security for FREE Learn five essential questions every Web3 founder should ask themselves to increase the security of their project without incurring additional costs. By addressing these […]
Renzo – Inability to deposit funds due to incorrect filling the withdraw buffer Under specific conditions, user deposits will always revert. Vulnerability Details When a user deposits funds through RestakeManager, the function checks the withdraw buffer and […]
