High severity7.5NVD Advisory· Published Jun 25, 2018· Updated Jun 17, 2026
CVE-2018-11446
CVE-2018-11446
Description
The buy function of a smart contract implementation for Gold Reward (GRX), an Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the buyer because of overflow of the multiplication of its argument amount and a manipulable variable buyPrice, aka the "tradeTrap" issue.
Affected products
1Patches
Vulnerability mechanics
References
1- peckshield.com/2018/06/11/tradeTrap/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.