cvedb.io
CVE-2018-12084
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-06-25T11:29:00.857 · Last modified 2026-06-17T01:37:07.350

Summary

The mintToken function of a smart contract implementation for BitAsean (BAS), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue.

Affected products

bitasean — bitasean

Does this affect you?

Add your gear to cvedb and we'll alert you only when bitasean ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.