Trail of Bits
Audit Open Original ↗

Maple

Type

Security review

Client

Maple Labs

Date

2021-11

Domain

Blockchain

Effort

4 wks

Section

Ethereum/EVM

Trail of Bits's security review of Maple Labs (Nov 2021) identified 9 issues: 1 high, 3 medium, 3 low, 1 informational, and 1 undetermined.

Findings · 9

  1. 1 Attackers can prevent lenders from funding or refinancing loans Low
  2. 2 Reentrancies can lead to misordered events Low
  3. 3 Lack of two-step process for critical operations Low
  4. 4 IERC20Like.decimals returns non-standard uint256 Undetermined
  5. 5 Transfers in Liquidator.liquidatePortion can fail silently Medium
  6. 6 ERC20Helper’s functions do not revert on a failure Informational
  7. 7 Lack of contract existence checks before low-level calls High
  8. 8 Missing zero checks Medium
  9. 9 Lack of user-controlled limits for input amount in Liquidator.liquidatePortion Medium

Findings extracted from the published report PDF. See the full report below for details and remediation.

Related