High severity7.5NVD Advisory· Published Feb 10, 2021· Updated Jun 17, 2026
CVE-2020-24837
CVE-2020-24837
Description
An integer underflow has been found in the latest version of ZCFees. The variables 'currPeriodIdx' and 'lastPeriodExecIdx' are both unsigned integers, and the result of the minus operation may be a negative integer which leads to an underflow. The attackers can modify the current timestamp of the transaction somehow and block the execution of the process function.
Affected products
2- ZCFees/ZCFeesdescription
Patches
Vulnerability mechanics
References
1- etherscan.io/address/0x9d79c6e2a0222b9ac7bfabc447209c58fe9e0dccnvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.