cvedb.io
CVE-2018-17968
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-10-23T21:30:53.737 · Last modified 2026-06-17T01:46:37.490

Summary

A gambling smart contract implementation for RuletkaIo, an Ethereum gambling game, generates a random value that is predictable by an external contract call. The developer wrote a random() function that uses a block timestamp and block hash from the Ethereum blockchain. This can be predicted by writing the same random function code in an exploit contract to determine the deadSeat value.

Affected products

ruletkaio — ruletkaio

Does this affect you?

Add your gear to cvedb and we'll alert you only when ruletkaio ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.