Vulnerability Details CVE-2018-18920
Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.execute_bytecode call that triggers computation._stack.values with '"stack": [100, 100, 0]' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed indefinitely without gas being paid."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.0%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- https://github.com/ethereum/py-evm/issues/1448
- https://twitter.com/AlexanderFisher/status/1060923428641878019
- https://twitter.com/NettaLab/status/1060889400102383617
- https://www.reddit.com/r/ethereum/comments/9vkk2g/netta_labs_claim_to_have_found_a_vulnerability_in/e9d3wyx/
- https://github.com/ethereum/py-evm/issues/1448
- https://twitter.com/AlexanderFisher/status/1060923428641878019
- https://twitter.com/NettaLab/status/1060889400102383617
- https://www.reddit.com/r/ethereum/comments/9vkk2g/netta_labs_claim_to_have_found_a_vulnerability_in/e9d3wyx/