Описание
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the transfer function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the std::string memo parameter.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:b1:eosio_batdappboomx:327c04cf:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03213
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-863
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the `transfer` function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the `std::string memo` parameter.
EPSS
Процентиль: 87%
0.03213
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-863