Lucene search
K

9 matches found

BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.6 views

The vulnerability of the XnSoft XnView Classic software for viewing and editing images, related to a countable loss of significance, allows a hacker to execute arbitrary code.

The vulnerability of the XnSoft XnView Classic software for viewing and editing images is related to a numerical loss of significance during file processing in RWZ format. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.00494EPSS
Exploits0References5Affected Software1
Code423n4
Code423n4
added 2023/12/21 12:0 a.m.17 views

Users receive fewer tokens due to inaccuracy in calculation

Lines of code Vulnerability details Impact There is a loss of precision in the VRGDAC.yToX function, because in several places division occurs first, and then the result is multiplied. This results in users receiving fewer tokens. According to test data, the difference can be 8 digits. The choice...

7AI score
Exploits0
Code423n4
Code423n4
added 2023/12/21 12:0 a.m.17 views

Loss of precision in calculations

Lines of code Vulnerability details The use of regular division can lead to loss of precision. This could enable certain manipulations through precision attacks. Recommendation: Use SafeMath's div for integer division. Division used in parent can lead to loss of precision. Safemath usage is...

7.1AI score
Exploits0
Code423n4
Code423n4
added 2023/08/28 12:0 a.m.12 views

Loss of precision due to division occurring before multiplication across multiple statements leads to lesser number of receiving tokens

Lines of code Vulnerability details Impact Swaps and Deposits work with two tokens X and Y. The computed amount of tokens on the receiving end decrease due to this multi-statement loss of precision occurring due to division before multiplication. Note: This finding is different from the L-06 bot...

6.7AI score
Exploits0
Code423n4
Code423n4
added 2023/08/24 12:0 a.m.11 views

Loss of precision in the YieldVault causes DoS when depositing from the Vault

Lines of code Vulnerability details Title Loss of precision in the YieldVault causes DoS when depositing from the Vault Original Issue M-22 - Loss of precision leads to undercollateralized Details The original demonstrates how the Vault could fall into undercollateralization mode if the YieldVaul...

6.6AI score
Exploits0
Code423n4
Code423n4
added 2023/01/29 12:0 a.m.14 views

Mitigation of H-02: See comments

Lines of code Vulnerability details The PR applies the recommended mitigation from the finding, but doesn't take into account the rounding issue identified in M-09 Impact If the price the NFT is bought for is not an exact multiple of the filledQuantities, there will be a loss of precision, and...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2022/09/19 12:0 a.m.11 views

Divide before multiply may lead to loss of precision

Lines of code Vulnerability details Impact Solidity integer division might truncate. As a result, performing multiplication before division can sometimes avoid loss of precision. Details This would affect the dynamicQuorumVotes vote logic correct functioning Proof of Concept...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2022/03/16 12:0 a.m.9 views

LiquidityPool:getAmountToTransfer() has incorrect calculation due to incorrect bracket placement

Lines of code Vulnerability details Impact In the scenario where the transfer fee exceeds the equilibrium fee, the excess gets credited to the incentive pool. The incentive pool fee added is incentivePooltokenAddress = incentivePooltokenAddress + amount transferFeePerc -...

6.6AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.8 views

The vulnerability of the Thunderbird email client, as well as the Firefox and Firefox ESR browsers, allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the nsHtml5TreeBuilder class in the Thunderbird HTML5 client browser, as well as in Firefox and Firefox ESR browsers, arises due to a loss of precision. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure disruption of resourc...

6.8CVSS8.2AI score0.30946EPSS
Exploits8References4Affected Software3
Rows per page
Query Builder