2 matches found
CVE-2020-35962
The sellTokenForLRC function in the vault protocol in the smart contract implementation for Loopring LRC, an Ethereum token, lacks access control for fee swapping and thus allows price manipulation...
CVE-2020-35962
The CVE-2020-35962 issue affects Loopring (LRC) by the vault protocol’s sellTokenForLRC function in its smart contract, which lacks access control for fee swapping. This vulnerability enables price manipulation within the on-chain logic. The documented impact is a HIGH severity in CVSS 3.1 (I:H) ...