Vulnerability Details CVE-2018-17882
An Integer overflow vulnerability exists in the batchTransfer function of a smart contract implementation for CryptoBotsBattle (CBTB), an Ethereum token. This vulnerability could be used by an attacker to create an arbitrary amount of tokens for any user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://etherscan.io/address/0x4daa9dc438a77bd59e8a43c6d46cbfe84cd04255#code
- https://github.com/GreenFoxy/Smart-contract-Vulnerabilities/blob/master/BattleToken.md
- https://etherscan.io/address/0x4daa9dc438a77bd59e8a43c6d46cbfe84cd04255#code
- https://github.com/GreenFoxy/Smart-contract-Vulnerabilities/blob/master/BattleToken.md
Products affected by CVE-2018-17882
-
cpe:2.3:a:cryptobots:battletoken:-