cvedb.io
CVE-2018-13690
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-07-09T06:29:11.697 · Last modified 2026-06-17T01:39:56.557

Summary

The mintToken function of a smart contract implementation for Instacocoa, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.

Affected products

instacocoa_project — instacocoa

Does this affect you?

Add your gear to cvedb and we'll alert you only when instacocoa_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.