CVE-2024-34273 | njwt up to 0.4.0 Parser.prototype.parse prototype pollution

Inserito da Angelo Barbosa | Mag 16, 2024 | CVE

A vulnerability classified as problematic has been found in njwt up to 0.4.0. This affects the function Parser.prototype.parse. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is uniquely identified as CVE-2024-34273. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-34273 | njwt up to 0.4.0 Parser.prototype.parse prototype pollution

Post correlati

CVE-2024-43429 | Moodle up to 4.1.11/4.2.8/4.3.5/4.4.1 Gradebook Report information disclosure

CVE-2023-45221 | Intel Media SDK memory corruption (intel-sa-00935)

CVE-2024-38367 | CocoaPods wrong session

CVE-2024-25015 | IBM MQ 9.2/9.3 Internet Pass-Thru amplification (XFDB-281278)