CVE-2024-36577 | apphp js-object-resolver up to 3.1.0 Module.setNestedProperty prototype pollution

Posted by Angelo Barbosa | Jun 17, 2024 | CVE

A vulnerability was found in apphp js-object-resolver up to 3.1.0. It has been rated as problematic. Affected by this issue is the function Module.setNestedProperty. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is handled as CVE-2024-36577. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36577 | apphp js-object-resolver up to 3.1.0 Module.setNestedProperty prototype pollution

Related Posts

CVE-2024-28121 | stimulus_reflex unknown vulnerability

CVE-2023-49222 | Precor P82 Private SSH Key Privilege Escalation

CVE-2024-32828 | Octolize Flexible Shipping Plugin up to 4.24.15 on WordPress authorization

CVE-2024-5696 | Mozilla Firefox up to 126 input Tag denial of service