CVE CVE-2018-19830 Mappings

The UBSexToken() function of a smart contract implementation for Business Alliance Financial Circle (BAFC), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function is public (by default) and does not check the caller's identity.


Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-19830 n/a uncategorized T0828 Loss of Productivity and Revenue
CVE-2018-19830 n/a uncategorized T1565 Data Manipulation
CVE-2018-19830 n/a uncategorized T1068 Exploitation for Privilege Escalation