CVE-2024-21529 | dset up to 3.1.3 prototype pollution (SNYK-JS-DSET-7116691)

Posted by Angelo Barbosa | Sep 11, 2024 | CVE

A vulnerability, which was classified as critical, was found in dset up to 3.1.3. Affected is the function dset. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is traded as CVE-2024-21529. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21529 | dset up to 3.1.3 prototype pollution (SNYK-JS-DSET-7116691)

Related Posts

CVE-2024-6426 | MESbook 20221021.03 API information disclosure

CVE-2024-47593 | SAP NetWeaver Application Server ABAP up to KRNL64UC 7.53 improper authentication

CVE-2023-48619 | Adobe Experience Manager AEM Cloud Service/6.5.18.0 cross site scripting (APSB23-72)

CVE-2022-42784 | Siemens LOGO 12 unknown vulnerability (ssa-844582)