exploitDog

GHSA-h2q9-88fw-gpmp

Опубликовано: 12 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.1

Описание

In Progress® Telerik® KendoReact versions v3.5.0 through v9.4.0, an attacker can introduce or modify properties within the global prototype chain which can result in denial of service or command injection.

In Progress® Telerik® KendoReact versions v3.5.0 through v9.4.0, an attacker can introduce or modify properties within the global prototype chain which can result in denial of service or command injection.

Ссылки

EPSS

Процентиль: 40%

0.00183

Низкий

4.1 Medium

CVSS3

CVE ID

Дефекты

CWE-1321

Связанные уязвимости

CVE-2024-12629

CVSS3: 4.1

nvd

12 месяцев назад

In Progress® Telerik® KendoReact versions v3.5.0 through v9.4.0, an attacker can introduce or modify properties within the global prototype chain which can result in denial of service or command injection.

EPSS

Процентиль: 40%

0.00183

Низкий

4.1 Medium

CVSS3

CVE ID

Дефекты

CWE-1321