CVE-2024-57084 | dot-properties 1.0.1 lib.parse prototype pollution

Posted by Angelo Barbosa | Feb 6, 2025 | CVE

A vulnerability was found in dot-properties 1.0.1. It has been declared as problematic. Affected by this vulnerability is the function lib.parse. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is known as CVE-2024-57084. The attack needs to be done within the local network. There is no exploit available.

CVE-2024-57084 | dot-properties 1.0.1 lib.parse prototype pollution

Related Posts

CVE-2024-38423 | Qualcomm Snapdragon Auto up to W5+ Gen GPU Page buffer overflow

CVE-2024-51478 | yeswiki up to 4.4.4 risky encryption

CVE-2025-20881 | Samsung Devices libsthmbc.so out-of-bounds write

CVE-2021-47148 | Linux Kernel up to 5.12.8 octeontx2-pf otx2_set_rxfh_context buffer overflow (389146bc6d2b/e5cc361e2164)