Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2018-14576

Published: 03/08/2018 Updated: 07/09/2021
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Summary

The mintTokens function of a smart contract implementation for SunContract, an Ethereum token, has an integer overflow via the _amount variable.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

suncontract suncontract -

Mailing Lists

Full Disclosure: Integer overflow in SunContract
I have found an integer overflow in mintTokens,the supply variable could overflow,because of the _amount variable is controlled by us and can eventually cause supply overflow to zero vuln code: function mintTokens(address _to, uint256 _amount) { if (msgsender != icoContractAddress) throw; // Only ICO address can min ...

References

CWE-190https://github.com/SunContract/SmartContracts/issues/1http://seclists.org/fulldisclosure/2018/Jul/93https://etherscan.io/address/0xF4134146AF2d511Dd5EA8cDB1C4AC88C57D60404#codehttps://nvd.nist.govhttp://seclists.org/fulldisclosure/2018/Jul/93
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2012-1823malicious code‎CVE-2024-5770CVE-2023-45866CVE-2024-35687local usersCVE-2024-31246CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook