4 matches found
CVE-2024-39012
ais-ltd strategyen v0.4.0 was discovered to contain a prototype pollution via the function mergeObjects. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...
CVE-2024-39012
The CVE-2024-39012 entry affects ais-ltd strategyen v0.4.0, where the mergeObjects function enables prototype pollution. The cited sources describe attackers exploiting this to achieve arbitrary code execution, Denial of Service, or related object-behavior manipulation (per Veracode and NVD). Pra...
ais-ltd strategyen 安全漏洞
ais-ltd strategyen is a UK AIS application. A security vulnerability exists in ais-ltd strategyen version v0.4.0, which stems from the discovery of inclusion prototype contamination via the mergeObjects function. An attacker could exploit this vulnerability to execute arbitrary code or cause a...
CVE-2024-39012
ais-ltd strategyen v0.4.0 was discovered to contain a prototype pollution via the function mergeObjects. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...