CVE-2018-12975
CVE-2018-12975 concerns CryptoSaga’s smart contract random() function. The vulnerability stems from using publicly readable variables—timestamp, current blockhash—and a private variable readable via getStorageAt—as inputs to random value creation. This allows an attacker to precompute the random ...