A vulnerability has been found in web3-core-method up to 1.10.4 and classified as problematic. The impacted element is the function
attachToObject
. This manipulation causes improperly controlled modification of object prototype attributes (‘prototype pollution’).
This vulnerability appears as CVE-2025-57329. The attacker needs to be present on the local network. In addition, an exploit is available.