Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The random() function of the smart contract implementation for CryptoSaga, an Ethereum game, generates a random value with publicly readable variables such as timestamp, the current block's blockhash, and a private variable (which can be read with a getStorageAt call). Therefore, attackers can precompute the random number and manipulate the game (e.g., get powerful characters or get critical damages).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CryptoSaga 安全漏洞
Vulnerability Description
CryptoSaga是一款基于以太坊的数字货币。 CryptoSaga的智能合约实现中的‘random()’函数存在安全漏洞。攻击者可利用该漏洞预先计算随机数并操纵游戏。
CVSS Information
N/A
Vulnerability Type
N/A