CVE-2020-17753

Vulnerable Component Details
Type Namespace Name Version Package URL
npm None rc 1.2.8 pkg:npm/rc@1.2.8?package-id=e6180ee22d8f1ef6
Vulnerability Details
ID CVE-2020-17753
Description An issue was discovered in function addMeByRC in the smart contract implementation for RC, an Ethereum token, allows attackers to transfer an arbitrary amount of tokens to an arbitrary address.
Ratings
Severity Score Method Vector Source
None None
6.5 CVSSv2 AV:N/AC:M/Au:N/C:N/I:P/A:N
6.5 CVSSv31 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Found By Anchore Grype
References / Advisories