VYPR
High severity7.5NVD Advisory· Published May 3, 2018· Updated Jun 17, 2026

CVE-2018-10666

CVE-2018-10666

Description

The Owned smart contract implementation for Aurora IDEX Membership (IDXM), an Ethereum ERC20 token, allows attackers to acquire contract ownership because the setOwner function is declared as public. A new owner can subsequently modify variables.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.