Lucene search
K

4 matches found

CNVD
CNVD
added 2018/05/03 12:0 a.m.5 views

Useless Ethereum Token Information Disclosure Vulnerability

Useless Ethereum Token UET is a virtual currency. A security vulnerability exists in the 'transferFrom' function implemented by smart contract in UET, which stems from the program's failure to correctly compute calculations containing the 'value' parameter. The vulnerability can be exploited by a...

7.5CVSS6.9AI score0.01595EPSS
Exploits3References1
NVD
NVD
added 2018/04/28 1:29 p.m.21 views

CVE-2018-10468

The transferFrom function of a smart contract implementation for Useless Ethereum Token UET, an Ethereum ERC20 token, allows attackers to steal assets e.g., transfer all victims' balances into their account because certain computations involving value are incorrect, as exploited in the wild...

7.5CVSS7.5AI score0.01595EPSS
Exploits3References2
CVE
CVE
added 2018/04/28 1:0 p.m.63 views

CVE-2018-10468

CVE-2018-10468 affects the Useless Ethereum Token (UET) ERC20 contract. The transferFrom function mishandles calculations involving _value, enabling an attacker to steal funds (e.g., drain victims’ balances). Exploitation has been observed in the wild since 2017-12. Related tokens (e.g., DimonCoi...

7.5CVSS7.4AI score0.01595EPSS
Exploits3References2Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2018/04/28 12:0 a.m.3 views

VulnCheck KEV: CVE-2018-10468

The transferFrom function of a smart contract implementation for Useless Ethereum Token UET, an Ethereum ERC20 token, allows attackers to steal assets e.g., transfer all victims' balances into their account because certain computations involving value are incorrect, as exploited in the...

7.5CVSS7.1AI score0.01595EPSS
Exploits3References1
Rows per page
Query Builder