ГлавнаяУязвимости → CVE-2024-39016
8.1высокая

CVE-2024-39016

Описание

che3vinci c3/utils-1 1.0.131 was discovered to contain a prototype pollution via the function assign. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

CVSS
Балл8.1 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://gist.github.com/mestrtee/865a957857a096221fe6f8b258b282achttps://gist.github.com/mestrtee/865a957857a096221fe6f8b258b282ac