exploitDog

CVE-2018-12082

Опубликовано: 25 июн. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

The mintToken function of a smart contract implementation for Fujinto (NTO), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue.

Ссылки

https://peckshield.com/2018/06/11/tradeTrap/
Third Party Advisory
https://peckshield.com/2018/06/11/tradeTrap/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:fujinto_project:fujinto:-:*:*:*:*:*:*:*

EPSS

Процентиль: 46%

0.00237

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-7r7w-6h49-2fqr

CVSS3: 7.5

github

больше 3 лет назад

The mintToken function of a smart contract implementation for Fujinto (NTO), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue.

EPSS

Процентиль: 46%

0.00237

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo