CVE-2021-3004
N/A
N/A
Summary
The _deposit function in the smart contract implementation for Stable Yield Credit (yCREDIT), an Ethereum token, has certain incorrect calculations. An attacker can obtain more yCREDIT tokens than they should.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://blocksecteam.medium.com/deposit-less-get-more-ycredit-attack-details-f589f71674c3
- https://etherscan.io/address/0xe0839f9b9688a77924208ad509e29952dc660261
References
- https://blocksecteam.medium.com/deposit-less-get-more-ycredit-attack-details-f589f71674c3
- https://etherscan.io/address/0xe0839f9b9688a77924208ad509e29952dc660261
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.