Description:
The whitelist_collateral function in central_control contract does not verify that max_ltv is lower than 1. If it is mistakenly set to a value greater than 1, users will be able to redeem more coins than the value of their deposited collaterals.
Description: The
whitelist_collateralfunction in central_control contract does not verify thatmax_ltvis lower than 1. If it is mistakenly set to a value greater than 1, users will be able to redeem more coins than the value of their deposited collaterals.Code Location: krp-cdp-contracts/contracts/central_control/src/contract.rs#L842