Calls to Oracles don't check for stale prices

Summary

Oracle price feeds can become stale due to a variety of reasons. Using a stale price will result in incorrect calculations in the key functionalities SWAP and REDEEM, Since a transaction can spend hours in the mempool.

Root Cause

No response

Internal pre-conditions

No response

External pre-conditions

No response

Attack Path

No response

Impact

No response

PoC

No response

Mitigation

It is recommended that the _latestRoundData function implement a validation check comparing the timestamp returned by the oracle with the timeout stored in the TokenOracle struct. This will ensure that only fresh and valid data is utilized in crucial functionalities such as SWAP and REDEEM

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

022.md

022.md

Calls to Oracles don't check for stale prices

Summary

Root Cause

Internal pre-conditions

External pre-conditions

Attack Path

Impact

PoC

Mitigation

Files

022.md

Latest commit

History

022.md

File metadata and controls

Calls to Oracles don't check for stale prices

Summary

Root Cause

Internal pre-conditions

External pre-conditions

Attack Path

Impact

PoC

Mitigation