The vulnerability arises from the use of sqrt
and nthRoot
functions in contracts to calculate roots without integrating decimal numbers, resulting in a loss of precision.
Without using decimal numbers is impossible to prevent vulnerability like this.
This vulnerability occurs consistently whenever the nthRoot
or sqrt
function is utilized. Each occurrence poses a risk of financial loss to contracts or users.
Manual Review
Consider employing floating-point numbers to mitigate vulnerabilities of this nature.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.