7.5
CVE-2021-3006
- EPSS 1.26%
- Veröffentlicht 03.01.2021 06:15:12
- Zuletzt bearbeitet 21.11.2024 06:20:44
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe breed function in the smart contract implementation for Farm in Seal Finance (Seal), an Ethereum token, lacks access control and thus allows price manipulation, as exploited in the wild in December 2020 and January 2021.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Seal Finance Project ≫ Seal Finance Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.26% | 0.658 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
https://blocksecteam.medium.com/security-incident-on-seal-finance-fa79c27a1c3b
https://etherscan.io/address/0x33c2da7fd5b125e629b3950f3c38d7f721d7b30d