CVE-2018-14715

N/A

Description

The endCoinFlip function and throwSlammer function of the smart contract implementations for Cryptogs, an Ethereum game, generate random numbers with an old block's hash. Therefore, attackers can predict the random number and always win the game.

CVE Details

CVSS v3.1 ScoreN/A

Published8/3/2018

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

cryptogs:cryptogs

Weaknesses (CWE)

CWE-338

References

https://medium.com/%40jonghyk.song/attack-on-pseudo-random-number-generator-prng-used-in-cryptogs-an-ethereum-cve-2018-14715-f63a51ac2eb9(cve@mitre.org)

https://medium.com/%40jonghyk.song/attack-on-pseudo-random-number-generator-prng-used-in-cryptogs-an-ethereum-cve-2018-14715-f63a51ac2eb9(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.