Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-12079 | 1 Substratum | 1 Substratum | 2019-10-02 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for Substratum (SUB), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue. | |||||
CVE-2018-12067 | 1 Substratum | 1 Substratum | 2019-10-02 | 5.0 MEDIUM | 7.5 HIGH |
The sell function of a smart contract implementation for Substratum (SUB), a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because of overflow of the multiplication of its argument amount and a manipulable variable sellPrice, aka the "tradeTrap" issue. | |||||
CVE-2018-12511 | 1 Substratum | 1 Substratum | 2018-11-09 | 5.0 MEDIUM | 7.5 HIGH |
In the mintToken function of a smart contract implementation for Substratum (SUB), an Ethereum ERC20 token, the administrator can control mintedAmount, leverage an integer overflow, and modify a user account's balance arbitrarily. |