CVE-2018-15552

EPSS 0.37% · P59 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-15552

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The "PayWinner" function of a simplelottery smart contract implementation for The Ethereum Lottery, an Ethereum gambling game, generates a random value with publicly readable variable "maxTickets" (which is private, yet predictable and readable by the eth.getStorageAt function). Therefore, it allows attackers to always win and get rewards.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Ethereum Lottery 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Ethereum Lottery是一款基于以太坊的博彩类游戏。 Ethereum Lottery的simplelottery智能合约实现中的‘PayWinner’函数存在安全漏洞，该漏洞源于‘PayWinner’函数采用公共可读的变量maxTickets生成随机值。攻击者可利用该漏洞赢得游戏并获取奖励。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-15552

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-15552

请登录查看更多情报信息。

Same Patch Batch · n/a · 2018-09-07 · 31 CVEs total

CVE-2018-16710		OctoPrint 安全漏洞
CVE-2018-16655		Gxlcms 跨站脚本漏洞
CVE-2018-16654		Zurmo 跨站脚本漏洞
CVE-2018-16653		rejucms 跨站脚本漏洞
CVE-2018-16651		phpMyFAQ 安全漏洞
CVE-2018-16650		phpMyFAQ 跨站请求伪造漏洞
CVE-2018-16658		Linux kernel 信息泄露漏洞
CVE-2018-16657		Kamailio 代码问题漏洞
CVE-2018-16704		Gleez CMS 信息泄露漏洞
CVE-2018-16703		Gleez CMS 安全漏洞
CVE-2018-16667		Contiki-NG 安全漏洞
CVE-2018-16666		Contiki-NG 缓冲区错误漏洞
CVE-2018-16665		Contiki-NG 缓冲区错误漏洞
CVE-2018-16664		Contiki-NG 缓冲区错误漏洞
CVE-2018-16663		Contiki-NG 缓冲区错误漏洞
CVE-2017-17691		Homeputer CL Studio fur HomeMatic 安全漏洞
CVE-2018-16709		多款Fuji Xerox产品安全漏洞
CVE-2018-9283		CremeCRM 跨站脚本漏洞
CVE-2018-16454		PHP Scripts Mall Olx Clone 跨站脚本漏洞
CVE-2018-16363		WordPress mndpsingh287 File Manager插件跨站脚本漏洞

Showing top 20 of 31 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-15552

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-15552

I. Basic Information for CVE-2018-15552

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-15552

III. Intelligence Information for CVE-2018-15552

Same Patch Batch · n/a · 2018-09-07 · 31 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-15552

Leave a comment