VYPR
High severity7.5NVD Advisory· Published May 9, 2018· Updated Jun 17, 2026

CVE-2018-10705

CVE-2018-10705

Description

The Owned smart contract implementation for Aurora DAO (AURA), an Ethereum ERC20 token, allows attackers to acquire contract ownership because the setOwner function is declared as public. An attacker can then conduct a lockBalances() denial of service attack.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.