Trail of Bits
Audit Open Original ↗

Otim Smart Wallet

Type

Security review

Client

Otim

Date

2025-03

Domain

Blockchain

Effort

3 wks

Section

Wallet Reviews

Trail of Bits's security review of Otim (Mar 2025) identified 9 issues: 1 high, 6 medium, and 2 informational.

Findings · 9

  1. 1 Lack of NFT callbacks Medium
  2. 2 Protocol does not handle tokens that do not return a Boolean Medium
  3. 3 Lack of validation of latestRoundData return value Medium
  4. 4 ERC-20 tokens cannot be withdrawn from Treasury contract High
  5. 5 Gas price calculation in OtimFee contract does not include priority fee Informational
  6. 6 Lack of maximum gas price protection in OtimFee contract Medium
  7. 7 Edge case when balance is at threshold Informational
  8. 8 Gas griefing vulnerability in native token transfer Medium
  9. 9 Delegate contract can be replaced to carry out gas griefing attack Medium

Findings extracted from the published report PDF. See the full report below for details and remediation.

Related