Vulnerability Details CVE-2018-17882
An Integer overflow vulnerability exists in the batchTransfer function of a smart contract implementation for CryptoBotsBattle (CBTB), an Ethereum token. This vulnerability could be used by an attacker to create an arbitrary amount of tokens for any user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 67.3%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://etherscan.io/address/0x4daa9dc438a77bd59e8a43c6d46cbfe84cd04255#code
- https://github.com/GreenFoxy/Smart-contract-Vulnerabilities/blob/master/BattleToken.md
- https://etherscan.io/address/0x4daa9dc438a77bd59e8a43c6d46cbfe84cd04255#code
- https://github.com/GreenFoxy/Smart-contract-Vulnerabilities/blob/master/BattleToken.md
Products affected by CVE-2018-17882
-
cpe:2.3:a:cryptobots:battletoken:-