CVE-2018-12975

Name: CVE-2018-12975
Creator: NVD / NIST
Published: 2018-09-24T22:29:00.427+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.25%

Last modified Jun 17, 2026

CVE-2018-12975 is a vulnerability of currently unknown severity. The random() function of the smart contract implementation for CryptoSaga, an Ethereum game, generates a random value with publicly readable variables such as timestamp, the current block's blockhash, and a private variable (which can be read with a getStorageAt call). Therefore, attackers can precompute the random number and manipulate the game (e.g., get powerful characters or get critical damages).. EPSS estimates a 1.25% chance of exploitation in the next 30 days.

Description

The random() function of the smart contract implementation for CryptoSaga, an Ethereum game, generates a random value with publicly readable variables such as timestamp, the current block's blockhash, and a private variable (which can be read with a getStorageAt call). Therefore, attackers can precompute the random number and manipulate the game (e.g., get powerful characters or get critical damages).

Metrics

EPSS Probability

1.25%

65.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-338

Affected Software

Vendor	Product	Versions
Cryptosaga	Cryptosaga	All versions

References

Timeline

Published: Sep 24, 2018
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2018-12975?

How severe is CVE-2018-12975?

Severity scoring for CVE-2018-12975 is pending analysis. The EPSS model estimates a 1.25% probability of exploitation in the next 30 days.

How do I fix CVE-2018-12975?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-12975?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST