Executive Summary

Summary of the issues uncovered during Bug Hunter's review of Convex Finance.

Overview and Scope

A codebase from project platform was reviewed for security vulnerabilities by Bug Hunter with the following details:

• GitHub Repository: https://github.com/convex-eth/platform
• Commit hash: 754d9e700693246275b613e895b4044b63ce9ed5

Bug Hunter reviewed the following files:

• VoterProxy.sol
• BaseRewardPool.sol
• CrvDepositor.sol
• Interfaces.sol
• StashFactory.sol
• DepositToken.sol
• Cvx.sol
• ExtraRewardStashV2.sol
• Booster.sol
• ManagedRewardPool.sol
• RewardFactory.sol
• cCrv.sol
• DebugInterfaces.sol
• cCrvRewardPool.sol
• TokenFactory.sol
• ExtraRewardStashV1.sol
• cvxRewardPool.sol
• VirtualBalanceRewardPool.sol

---

Summary of Findings

The uncovered vulnerabilities identified during the security review are summarised in the table below:

Severity	Count
High	0
Medium	2
Low	3

FULL REPORT

📄 Click here to view the full PDF report