Hardcoded Address for `vaultOldAddress`

Summary

The hardcoded address for vaultOldAddress will cause deployment issues for the contract users as they will not be able to deploy in different environments where the address differs.

Root Cause

In vaultV2Deployer.sol:45, the address vaultOldAddress is hardcoded instead of being passed as a parameter.

Internal pre-conditions

Admin needs to deploy the contract with a fixed address for vaultOldAddress.

External pre-conditions

No external conditions required for this issue to manifest.

Attack Path

The contract is deployed with a hardcoded vaultOldAddress.
The contract cannot interact with the correct address if deployed in a different environment or address changes.

Impact

The affected party (contract users) cannot deploy the contract correctly in different environments due to the hardcoded address.

PoC

Numa/contracts/deployment/vaultV2Deployer.sol

address vaultOldAddress = 0x8Fe15Da7485830f26c37Da8b3c233773EB0623D2; // Hardcoded address

Mitigation

Replace the hardcoded address with a constructor parameter to allow dynamic address assignment during deployment.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

044.md

044.md

Hardcoded Address for `vaultOldAddress`

Summary

Root Cause

Internal pre-conditions

External pre-conditions

Attack Path

Impact

PoC

Mitigation

Files

044.md

Latest commit

History

044.md

File metadata and controls

Hardcoded Address for vaultOldAddress

Summary

Root Cause

Internal pre-conditions

External pre-conditions

Attack Path

Impact

PoC

Mitigation

Hardcoded Address for `vaultOldAddress`