CVE-2024-36573 | almela obx up to 0.0.3 obx/build/index.js prototype pollution

Inserito da Angelo Barbosa | Giu 17, 2024 | CVE

A vulnerability classified as problematic was found in almela obx up to 0.0.3. Affected by this vulnerability is an unknown functionality of the file obx/build/index.js. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is known as CVE-2024-36573. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36573 | almela obx up to 0.0.3 obx/build/index.js prototype pollution

Post correlati

CVE-2024-35387 | Totolink LR350 9.3.5u.6369_B20220309 loginAuth http_host stack-based overflow

CVE-2023-42736 | Unisoc S8000 Telecom Service permission

CVE-2022-48665 | Linux Kernel up to 5.19.11/6.0 exfat buffer overflow (17244f71765d/2e9ceb6728f1)

CVE-2023-24589 | Intel Thunderbolt DCH Drivers on Windows unknown vulnerability (intel-sa-00851)