Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The randMod() function of the smart contract implementation for MyCryptoChamp, an Ethereum game, generates a random value with publicly readable variables such as the current block information and a private variable, (which can be read with a getStorageAt call). Therefore, attackers can get powerful champs/items and get rewards.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MyCryptoChamp 安全漏洞
Vulnerability Description
MyCryptoChamp是一款基于以太坊的区块链游戏。 MyCryptoChamp的智能合约实现中的‘randMod()’函数存在安全漏洞,该漏洞源于‘randMod()’函数生成了含有公共可读取的变量和私有变量的随机值。攻击者可利用该漏洞获取强大的champs和物品并获得奖励。
CVSS Information
N/A
Vulnerability Type
N/A