Vulnerabilities (CVE)

Filtered by vendor Zcfees Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-24837 1 Zcfees Project 1 Zcfees 2024-11-21 5.0 MEDIUM 7.5 HIGH
An integer underflow has been found in the latest version of ZCFees. The variables 'currPeriodIdx' and 'lastPeriodExecIdx' are both unsigned integers, and the result of the minus operation may be a negative integer which leads to an underflow. The attackers can modify the current timestamp of the transaction somehow and block the execution of the process function.