Описание
Incorrect Calculation in bigint-money
Versions of bigint-money prior to 0.6.2 are vulnerable to an Incorrect Calculation. The package incorrectly rounded certain numbers, which could have drastic consequences due to its usage in financial systems.
Recommendation
Upgrade to version 0.6.2 or later.
Пакеты
Наименование
bigint-money
npm
Затронутые версииВерсия исправления
< 0.6.2
0.6.2
Дефекты
CWE-682
Дефекты
CWE-682