CVE-2024-36575 | getsetprop 1.1.0 global.accessor prototype pollution

Inserito da Angelo Barbosa | Giu 17, 2024 | CVE

A vulnerability has been found in getsetprop 1.1.0 and classified as problematic. This vulnerability affects the function global.accessor. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability was named CVE-2024-36575. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-36575 | getsetprop 1.1.0 global.accessor prototype pollution

Post correlati

CVE-2023-7210 | OneNav up to 0.9.33 API /index.php X-Token improper authentication

CVE-2024-6540 | OTRS up to 8.0.x/2023.x/2024.4.x Ticket improper filtering of special elements

CVE-2021-47010 | Linux Kernel up to 4.19.190/5.4.118/5.10.36/5.11.20/5.12.3 tcp_set_default_congestion_control information disclosure

CVE-2024-10659 | ESAFENET CDG 5 CDGAuthoriseTempletService.java delSystemEncryptPolicy id sql injection