A vulnerability classified as problematic was found in almela obx up to 0.0.3. Affected by this vulnerability is an unknown functionality of the file obx/build/index.js. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is known as CVE-2024-36573. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.