Enumeration

Through the De-FAULT framework, we have meticulously identified core functional elements which are comprehensively cataloged within the Risk Library available on our site.

Deposit

De-FAULT

Description

Coding Flaw (F)

Errors or bugs in the deposit function may lead to unintended deposits or loss of funds, affecting user balances and protocol stability.

Business Logic (L)

Errors in the business logic of deposits could result in unexpected handling of deposits, impacting user assets and protocol integrity.

Tampered Ratio (T)

Manipulation of critical ratios could distort deposit interest rates or rewards, leading to asset imbalances.

Withdraw

De-FAULT

Description

Coding Flaw (F)

Coding errors in the withdrawal function could lead to unauthorized withdrawals or denial of legitimate requests, impacting user assets.

Business Logic (L)

Flaws in the withdrawal logic may lead to incorrect account balance changes, posing a risk of asset loss.

Tampered Ratio (T)

Tampered ratios could cause inaccurate balance calculations or change withdrawal conditions.

Borrow

De-FAULT

Description

Coding Flaw (F)

Bugs in the borrowing code may result in incorrect loan terms or unauthorized access, risking protocol integrity and user experience.

Business Logic (L)

Logic errors in borrowing functions may lead to incorrect loan terms or miscalculated interest.

Tampered Ratio (T)

Manipulated ratios can impact loan amounts and interest, destabilizing the protocol.

Repay

De-FAULT

Description

Coding Flaw (F)

Vulnerabilities in repayment code could lead to errors in payment tracking, affecting user balances and debt calculations.

Business Logic (L)

Errors in repayment logic can result in inconsistencies in user balances or loan terms.

Liquidation

De-FAULT

Description

Coding Flaw (F)

Flaws in liquidation code may lead to incorrect handling of collateral, impacting protocol integrity and user trust.

Business Logic (L)

Errors in liquidation logic may cause misjudgment of collateral value or incorrect liquidation conditions.

Tampered Ratio (T)

Manipulated ratios may trigger improper liquidation, leading to asset losses or protocol instability.

Interest / Reward

De-FAULT

Description

Coding Flaw (F)

Errors in interest or reward functions could result in inaccurate distributions, impacting user assets and protocol stability.

Business Logic (L)

Logic errors could lead to inaccuracies in interest and reward distribution, potentially causing unfair gains or losses.

Oracle

De-FAULT

Description

Coding Flaw (F)

Bugs in oracle code may result in incorrect data retrieval, affecting protocol reliability and transaction accuracy.

Business Logic (L)

Errors in oracle logic may lead to inaccurate data use, distorting transactions and decisions.

Management

De-FAULT

Description

Decentralized Issue (De)

Decentralization challenges in management functions may affect governance consistency and protocol operations.

Coding Flaw (F)

Management code vulnerabilities may allow unauthorized protocol changes or governance manipulation.

Access Control (A)

Weak access control can expose management functions to unauthorized users, compromising governance and security.

Upgradeable Contract (U)

Upgrading management contracts may introduce vulnerabilities, potentially affecting governance.

Business Logic (L)

Errors in management logic could disrupt protocol operations and governance, impacting security.

Tampered Ratio (T)

Manipulated ratios within management functions can distort financial metrics, impacting protocol stability.

User State

De-FAULT

Description

Coding Flaw (F)

Vulnerabilities in user state management code may cause inaccuracies in account balances or privileges.

Access Control (A)

Insufficient access control in user state functions can lead to data breaches or unauthorized modifications.

Business Logic (L)

Errors in the business logic of user state functions may compromise account accuracy and affect user trust.

Protocol State

De-FAULT

Description

Coding Flaw (F)

Errors in protocol state management code may lead to discrepancies in performance tracking or security assessments.

Access Control (A)

Weak access control over protocol state data may allow unauthorized modifications.

Business Logic (L)

Errors in protocol state logic may result in misrepresentation of key protocol data.

PreviousThreat Enumeration NextRisk Tree

Last updated 6 months ago

Deposit

De-FAULT

Description

Coding Flaw (F)

Errors or bugs in the deposit function may lead to unintended deposits or loss of funds, affecting user balances and protocol stability.

Business Logic (L)

Errors in the business logic of deposits could result in unexpected handling of deposits, impacting user assets and protocol integrity.

Tampered Ratio (T)

Manipulation of critical ratios could distort deposit interest rates or rewards, leading to asset imbalances.

Withdraw

De-FAULT

Description

Coding Flaw (F)

Coding errors in the withdrawal function could lead to unauthorized withdrawals or denial of legitimate requests, impacting user assets.

Business Logic (L)

Flaws in the withdrawal logic may lead to incorrect account balance changes, posing a risk of asset loss.

Tampered Ratio (T)

Tampered ratios could cause inaccurate balance calculations or change withdrawal conditions.

Borrow

De-FAULT

Description

Coding Flaw (F)

Bugs in the borrowing code may result in incorrect loan terms or unauthorized access, risking protocol integrity and user experience.

Business Logic (L)

Logic errors in borrowing functions may lead to incorrect loan terms or miscalculated interest.

Tampered Ratio (T)

Manipulated ratios can impact loan amounts and interest, destabilizing the protocol.

Liquidation

De-FAULT

Description

Coding Flaw (F)

Flaws in liquidation code may lead to incorrect handling of collateral, impacting protocol integrity and user trust.

Business Logic (L)

Errors in liquidation logic may cause misjudgment of collateral value or incorrect liquidation conditions.

Tampered Ratio (T)

Manipulated ratios may trigger improper liquidation, leading to asset losses or protocol instability.

Management

De-FAULT

Description

Decentralized Issue (De)

Decentralization challenges in management functions may affect governance consistency and protocol operations.

Coding Flaw (F)

Management code vulnerabilities may allow unauthorized protocol changes or governance manipulation.

Access Control (A)

Weak access control can expose management functions to unauthorized users, compromising governance and security.

Upgradeable Contract (U)

Upgrading management contracts may introduce vulnerabilities, potentially affecting governance.

Business Logic (L)

Errors in management logic could disrupt protocol operations and governance, impacting security.

Tampered Ratio (T)

Manipulated ratios within management functions can distort financial metrics, impacting protocol stability.

User State

De-FAULT

Description

Coding Flaw (F)

Vulnerabilities in user state management code may cause inaccuracies in account balances or privileges.

Access Control (A)

Insufficient access control in user state functions can lead to data breaches or unauthorized modifications.

Business Logic (L)

Errors in the business logic of user state functions may compromise account accuracy and affect user trust.

Protocol State

De-FAULT

Description

Coding Flaw (F)

Errors in protocol state management code may lead to discrepancies in performance tracking or security assessments.

Access Control (A)

Weak access control over protocol state data may allow unauthorized modifications.

Business Logic (L)

Errors in protocol state logic may result in misrepresentation of key protocol data.