Integer Overflow Vulnerability in VEU_TokenERC20 Smart Contract's Sell Function

Integer Overflow Vulnerability in VEU_TokenERC20 Smart Contract's Sell Function

CVE-2018-13224 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The sell function of a smart contract implementation for Virtual Energy Units (VEU) (Contract Name: VEU_TokenERC20), an Ethereum token, has an integer overflow in which "amount * sellPrice" can be zero, consequently reducing a seller's assets.

Learn more about our Web Application Penetration Testing UK.