Nugget_Alex

Name of the Vulnerable Software and Affected Versions: SmartMesh (aka SMT) (affected versions not specified) Description: The issue is related to an integer overflow in the transferProxy function of a smart contract implementation, allowing attackers to increase digital assets unauthorized via crafted ` fee` and ` value` parameters. This issue, also known as the "proxyOverflow" issue, has been exploited in the wild. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Beauty Ecosystem Coin (BEC) (affected versions not specified) Description: The issue concerns an integer overflow in the `batchTransfer` function of a smart contract implementation. This allows attackers to increase digital assets without authorization by providing two ` receivers` arguments along with a large ` value` argument. The issue was exploited in the wild in April 2018. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.