Missing access control in _getLoanMarketId function

Summary

The internal _getLoanMarketId function does not have any access control mechanism. This might lead to unauthorized access to the market ID information.

Vulnerability Detail

In the LenderManager.sol contract, the _getLoanMarketId function lacks access control, potentially allowing unauthorized parties to access market ID information.

Impact

Unauthorized access to market ID information, potentially compromising the integrity of the platform.

Code Snippet

https://github.com/sherlock-audit/2023-03-teller/blob/main/teller-protocol-v2/packages/contracts/contracts/LenderManager.sol#L52

Tool used

Manual Review

Recommendation

Implement proper access control mechanisms for the _getLoanMarketId function to ensure that only authorized parties can access market ID information. Consider using a role-based access control system to manage access to sensitive functions.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

059.md

059.md

Missing access control in _getLoanMarketId function

Summary

Vulnerability Detail

Impact

Code Snippet

Tool used

Recommendation

Files

059.md

Latest commit

History

059.md

File metadata and controls

Missing access control in _getLoanMarketId function

Summary

Vulnerability Detail

Impact

Code Snippet

Tool used

Recommendation