Total
2260 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-2899 | 2 Blender, Debian | 2 Blender, Debian Linux | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
An exploitable integer overflow exists in the TIFF loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.tif' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset via the sequencer in order to trigger this vulnerability. | |||||
CVE-2018-13131 | 1 Spadepresale Project | 1 Spadepresale | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
SpadePreSale is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner. | |||||
CVE-2018-13743 | 1 Sectoken Project | 1 Sectoken | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for SuperEnergy (SEC), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13209 | 1 Nectar Project | 1 Nectar | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The sell function of a smart contract implementation for Nectar (NCTR), an Ethereum token, has an integer overflow in which "amount * sellPrice" can be zero, consequently reducing a seller's assets. | |||||
CVE-2018-13607 | 1 Residualshare Project | 1 Residualshare | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for ResidualShare, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-12062 | 1 Swft | 1 Swftcoin | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The sell function of a smart contract implementation for SwftCoin (SWFTC), a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because of overflow of the multiplication of its argument amount and a manipulable variable sellPrice, aka the "tradeTrap" issue. | |||||
CVE-2018-13686 | 1 Icodollar Project | 1 Icodollar | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for ICO Dollar (ICOD), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13521 | 1 Pinky Token Project | 1 Pinky Token | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for PinkyToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2014-9994 | 1 Qualcomm | 4 Sd 400, Sd 400 Firmware, Sd 800 and 1 more | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400 and SD 800, lack of validation of input could cause a integer overflow that could subsequently lead to a buffer overflow. | |||||
CVE-2018-13210 | 1 Providence | 1 Providence Crypto Casino | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The sell function of a smart contract implementation for Providence Crypto Casino (PVE) (Contract Name: ProvidenceCasinoToken), an Ethereum token, has an integer overflow in which "amount * sellPrice" can be zero, consequently reducing a seller's assets. | |||||
CVE-2018-13175 | 1 Aichain Project | 1 Aichain | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for AIChain, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-12265 | 3 Canonical, Debian, Exiv2 | 3 Ubuntu Linux, Debian Linux, Exiv2 | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp. | |||||
CVE-2018-13518 | 1 Tcash Project | 1 Tcash | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for TCash, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13730 | 1 Hey Project | 1 Hey | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for HEY, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13619 | 1 Micointoken Project | 1 Micointoken | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for MicoinToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13562 | 1 Bmvcoin | 1 Bmvcoin | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for BMVCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13484 | 1 Cbr Token Project | 1 Cbr Token | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for CBRToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13748 | 1 Cartoken Project | 1 Cartoken | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The mintToken function of a smart contract implementation for CarToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
CVE-2018-13233 | 1 Gsi Project | 1 Gsi | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The sell function of a smart contract implementation for GSI, an Ethereum token, has an integer overflow in which "amount * sellPrice" can be zero, consequently reducing a seller's assets. | |||||
CVE-2017-15325 | 1 Huawei | 10 Prague-al00a, Prague-al00a Firmware, Prague-al00b and 7 more | 2023-12-10 | 9.3 HIGH | 7.8 HIGH |
The Bdat driver of Prague smart phones with software versions earlier than Prague-AL00AC00B211, versions earlier than Prague-AL00BC00B211, versions earlier than Prague-AL00CC00B211, versions earlier than Prague-TL00AC01B211, versions earlier than Prague-TL10AC01B211 has integer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP and execute it as a specific privilege; the APP can then send a specific parameter to the driver of the smart phone, causing arbitrary code execution. |