Balance Vulnerability in Ethereum Blockchain by Ethereum
CVE-2023-36980

5.3MEDIUM

Key Information:

Vendor: Ethereum
Status: Blockchain
Vendor: CVE Published:; 11 September 2023

What is CVE-2023-36980?

A specific issue in the Ethereum Blockchain version 0.1.1 and above can lead to a critical malfunction where user balances are inadvertently reset. This occurs when the sum of bets placed and the casino balance surpasses a predefined threshold, threatening user assets and the integrity of transactions. Users leveraging this platform should be cautious and stay updated on patches and mitigations.

References

https://etherscan.io/

https://github.com/WayneLi12/CVEs/tree/master/CVE-2023-36980

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2023
Vulnerability Reserved
Jun 28, 2023