18 matches found
EUVD-2018-4060
Malware in sbrugna...
EUVD-2018-4053
Malware in sbrugna...
EUVD-2018-4062
Malware in sbrugna...
EUVD-2018-4046
Malware in sbrugna...
Buffer overflow
The sell function of a smart contract implementation for SEC, a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because of overflow of the multiplication of its argument amount and a manipulable variable sellPrice, aka the...
CVE-2018-12078
The mintToken function of a smart contract implementation for PolyAI AI, a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue...
Design/Logic Flaw
The mintToken function of a smart contract implementation for Fujinto NTO, a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue...
CVE-2018-12081
The mintToken function of a smart contract implementation for Target Coin TGT, a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue...
Code injection
The mintToken function of a smart contract implementation for PolyAI AI, a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue...
CVE-2018-12084
The mintToken function of a smart contract implementation for BitAsean BAS, a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue...
CVE-2018-12062
The sell function of a smart contract implementation for SwftCoin SWFTC, a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because of overflow of the multiplication of its argument amount and a manipulable variable sellPrice, aka...
Buffer overflow
The sell function of a smart contract implementation for Internet Node Token INT, a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because of overflow of the multiplication of its argument amount and a manipulable variable...
CVE-2018-12063
The sell function of a smart contract implementation for Internet Node Token INT, a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because of overflow of the multiplication of its argument amount and a manipulable variable...
CVE-2018-12070
The sell function of a smart contract implementation for SEC, a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because of overflow of the multiplication of its argument amount and a manipulable variable sellPrice, aka the...
Buffer overflow
The sell function of a smart contract implementation for Substratum SUB, a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because of overflow of the multiplication of its argument amount and a manipulable variable sellPrice, aka...
CVE-2018-12083
The mintToken function of a smart contract implementation for GOAL Bonanza GOAL, a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue...
CVE-2018-12083
The mintToken function of a smart contract implementation for GOAL Bonanza GOAL, a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue...
CVE-2018-12063
Technical details sufficient to assess impact (affected software, root cause, vulnerable components, or fixes) are not publicly provided in the supplied documents. Monitor for updates from official advisories.