cvedb.io
CVE-2018-13714
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-07-09T06:29:12.853 · Last modified 2026-06-17T01:39:59.620

Summary

The mintToken function of a smart contract implementation for CM, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.

Affected products

cm_project — cm

Does this affect you?

Add your gear to cvedb and we'll alert you only when cm_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.