CVE-2018-18667

high

Description

The mintToken function of Pylon (PYLNT) aka PylonToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value, a related issue to CVE-2018-11812.

References

https://github.com/n0pn0pn0p/smart_contract_-vulnerability/blob/master/PolyAi.md

https://github.com/klenergy/ethereum-contracts/issues/1

https://etherscan.io/address/0x7703c35cffdc5cda8d27aa3df2f9ba6964544b6e#code

Details

Source: Mitre, NVD

Published: 2018-12-28

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Severity: High

EPSS

EPSS: 0.00289