exploitDog

GHSA-j4jv-r335-5ch9

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue was discovered in a smart contract implementation for MKCB, an Ethereum token. If the owner sets the value of sellPrice to a large number in setPrices() then the "amount * sellPrice" will cause an integer overflow in sell().

An issue was discovered in a smart contract implementation for MKCB, an Ethereum token. If the owner sets the value of sellPrice to a large number in setPrices() then the "amount * sellPrice" will cause an integer overflow in sell().

Ссылки

EPSS

Процентиль: 62%

0.00433

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-190

Связанные уязвимости

CVE-2018-14084

CVSS3: 9.8

nvd

больше 7 лет назад

An issue was discovered in a smart contract implementation for MKCB, an Ethereum token. If the owner sets the value of sellPrice to a large number in setPrices() then the "amount * sellPrice" will cause an integer overflow in sell().

EPSS

Процентиль: 62%

0.00433

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-190