exploitDog

CVE-2024-39016

Опубликовано: 01 июл. 2024

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

che3vinci c3/utils-1 1.0.131 was discovered to contain a prototype pollution via the function assign. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

Ссылки

EPSS

Процентиль: 63%

0.00442

Низкий

8.1 High

CVSS3

Дефекты

CWE-1321

Связанные уязвимости

GHSA-j9gp-7x9x-fj2q

CVSS3: 8.1

github

больше 1 года назад

che3vinci c3/utils-1 1.0.131 was discovered to contain a prototype pollution via the function assign. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

EPSS

Процентиль: 63%

0.00442

Низкий

8.1 High

CVSS3

Дефекты

CWE-1321