CVE-2023-36980

Summary

CVE-2023-36980 is a vulnerability affecting Ethereum Blockchain version 0.1.1 and later, commit 6ff4cd6. This issue allows an attacker to cause a user's balance to be zeroed out if the sum of betsize and the casino's balance exceeds a certain threshold. This can result in financial loss for the affected user. The exact cause of the vulnerability is an error in the Ethereum software that fails to properly check and limit transactions. This issue poses a significant risk for users who interact with Ethereum-based casinos and can potentially lead to substantial financial losses.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.