CVE-2024-21529 | dset up to 3.1.3 prototype pollution (SNYK-JS-DSET-7116691)

Inserito da Angelo Barbosa | Set 11, 2024 | CVE

A vulnerability, which was classified as critical, was found in dset up to 3.1.3. Affected is the function dset. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is traded as CVE-2024-21529. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21529 | dset up to 3.1.3 prototype pollution (SNYK-JS-DSET-7116691)

Post correlati

CVE-2024-28396 | MyPrestaModules ordersexport up to 6.0.2 on PrestaShop download.php Privilege Escalation

CVE-2024-34480 | SourceCodester Laboratory Management System 1.0 view_category.php sql injection

CVE-2024-0104 | NVIDIA Mellanox OS/ONYX/Skyway/MetroX-3 XC/MetroX-2 LDAP AAA Component access control

CVE-2024-24686 | libigl 2.5.0 readOFF stack-based overflow (TALOS-2024-1929)