cvedb.io
CVE-2018-13525
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-07-09T06:29:03.463 · Last modified 2026-06-17T01:39:35.340

Summary

The mintToken function of a smart contract implementation for Flow, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.

Affected products

flow_project — flow

Does this affect you?

Add your gear to cvedb and we'll alert you only when flow_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.