1 |
The DAO Reentrancy |
10.25.2018 |
Smart contract |
Ethereum |
Reentrancy |
10.0 |
2 |
PoWHC and Batch Transfer Overflow |
10.26.2018 |
Smart contract |
Ethereum |
Overflows |
10.0 |
3 |
SmartBillions Lottery |
10.25.2018 |
Smart contract |
Ethereum |
Entropy Illusion |
10.0 |
4 |
King of the Ether Hack |
10.25.2018 |
Smart contract |
Ethereum |
Unchecked-send |
10.0 |
5 |
Rubixi hack |
10.25.2018 |
Smart contract |
Ethereum |
Constructors with Care |
10.0 |
6 |
proxyOverflow Bug |
10.25.2018 |
Smart contract |
Ethereum |
Overflows |
10.0 |
7 |
GovernMental DoS |
10.26.2018 |
Smart contract |
Ethereum |
Denial Of Service (DOS) |
8.8 |
8 |
TheRun hack |
10.25.2018 |
Smart contract |
Ethereum |
Entropy Illusion |
10.0 |
9 |
Bancor front-running attack |
10.25.2018 |
Smart contract |
Ethereum |
Front-running |
6.6 |
10 |
Parity MultiSig Wallet Delegatecall |
10.26.2018 |
Smart contract |
Ethereum |
Delegatecall |
10.0 |
11 |
Parity MultiSig Wallet |
10.26.2018 |
Smart contract |
Ethereum |
Default Visibilities |
10.0 |
12 |
Re-Entrancy Honey Pot |
10.26.2018 |
Smart contract |
Ethereum |
Honey Pot |
9.2 |
13 |
ERC20 API Approve/TransferFrom |
10.26.2018 |
Smart contract |
Ethereum |
Front-running |
9.4 |
14 |
Governmental exception disorder |
10.26.2018 |
Smart contract |
Ethereum |
Stack size limit |
9.4 |
15 |
GovernMental unpredictable state |
10.26.2018 |
Smart contract |
Ethereum |
Unpredictable state |
8.0 |
16 |
OpenAddressLottery Honey Pot |
10.26.2018 |
Smart contract |
Ethereum |
Honey Pot |
9.4 |
17 |
CryptoRoulette Honey Pot |
10.26.2018 |
Smart contract |
Ethereum |
Honey Pot |
9.4 |
18 |
Ethstick |
10.26.2018 |
Smart contract |
Ethereum |
Entropy Illusion |
10.0 |
19 |
SpankChain Reentrancy |
10.26.2018 |
Smart contract |
Ethereum |
Reentrancy |
10.0 |
20 |
HackerGold Typo |
10.26.2018 |
Smart contract |
Ethereum |
Typo |
10.0 |
21 |
Augur REP Token Vulnerability |
10.26.2018 |
Smart contract |
Ethereum |
Language Quirks |
10.0 |
22 |
A bug in the Monero wallet balance can enable theft from exchanges |
10.29.2018 |
Wallet |
Monero |
Business Logic Missing |
10.0 |
23 |
Attacker can trick monero wallet into reporting it recived twice as much with alternative tx_keypubs |
10.29.2018 |
Wallet |
Monero |
Business Logic Missing |
10.0 |
24 |
Malicious get_random_rct_outs.bin rpc can cause a near-infinite loop |
10.26.2018 |
Node |
Monero |
Denial Of Service (DOS) |
10.0 |
25 |
Misreporting of received amount by show_transfers |
10.26.2018 |
Protocol |
Monero |
Business Logic Missing |
8.9 |
26 |
Constant-time comparison is not always implemented; critical areas are vulnerable to key-timing attacks |
10.26.2018 |
Protocol |
Monero |
Required Cryptographic Step |
10.0 |
27 |
monerod can be disabled by a well-timed TCP reset packet |
10.26.2018 |
Node |
Monero |
Denial Of Service (DOS) |
6.2 |
28 |
Corrupt RPC responses from remote daemon nodes can lead to transaction tracing |
10.28.2018 |
RPC |
Monero |
Privacy Violation |
5.6 |
29 |
Out-of-bounds read when importing corrupt blockchain with monero-blockchain-import |
10.29.2018 |
Protocol |
Monero |
Out-of-bounds Read |
2.7 |
30 |
Stack Overflow in JSON RPC Server |
11.06.2018 |
Node |
Monero |
Stack Overflow |
10.0 |
31 |
EPoD (Ethereum Packet of Death) |
11.06.2018 |
Node |
TTC Protocol |
Denial Of Service (DOS) |
6.6 |