CVE-2018-13656
HIGHcashBackMintable - Integer Overflow in mintToken Function
Title source: llmDescription
The mintToken function of a smart contract implementation for Sample Token (STK) (Contract Name: cashBackMintable), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
References (2)
Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/BlockChainsSecurity/EtherTokens/blob/master/GEMCHAIN/mint%20integer%20overflow.md
Third Party Advisory x_refsource_misc
https://github.com/BlockChainsSecurity/EtherTokens/tree/master/cashBackMintable
Scores
CVSS v3
7.5
EPSS
0.0107
EPSS Percentile
60.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-190
Status
published
Products (1)
cashbackmintable_project/cashbackmintable
Published
Jul 09, 2018
Tracked Since
Feb 18, 2026