Maple Finance

Findings · 7

1. 1 Risk of reuse of signatures across forks due to lack of chain ID validation High
2. 2 Risk of token theft due to race condition in ERC20’s approve function High
3. 3 Missing check on newAsset’s decimals Low
4. 4 Lack of zero address checks Low
5. 5 Possibility that users could receive more assets than the amount due Low
6. 6 Signature malleability due to use of ecrecover Informational
7. 7 Solidity compiler optimizations can be problematic Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.