CVE-2018-10666

The Owned smart contract implementation for Aurora IDEX Membership (IDXM), an Ethereum ERC20 token, allows attackers to acquire contract ownership because the setOwner function is declared as public. A new owner can subsequently modify variables. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt