Description:
The instantiate and update_config functions from central_control contract do not verify that redeem_fee is lower than 1. If it is mistakenly set to a value greater than 1, the operation of redeeming stable coins will always panic because of an underflow error.
Code Location:
krp-cdp-contracts/contracts/central_control/src/contract.rs#L58, L502-504
Description: The
instantiate
andupdate_config
functions from central_control contract do not verify thatredeem_fee
is lower than 1. If it is mistakenly set to a value greater than 1, the operation of redeeming stable coins will always panic because of an underflow error. Code Location: krp-cdp-contracts/contracts/central_control/src/contract.rs#L58, L502-504