8.3 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.2%
robinweser fast-loops v1.1.3 was discovered to contain a prototype pollution via the function objectMergeDeep. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
bugzilla.redhat.com/show_bug.cgi?id=2295029
gist.github.com/mestrtee/f09a507c8d59fbbb7fd40880cd9b87ed
nvd.nist.gov/vuln/detail/CVE-2024-39008
www.cve.org/CVERecord?id=CVE-2024-39008