Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 10:48 a.m.8 views

CVE-2024-21548

Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...

7.7CVSS6.1AI score0.00647EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/12/18 6:30 a.m.10 views

@01ht/ht-api-helper-functions (>=1.0.0 <=1.0.2), @1amageek/tradable (>=0.1.0 <=0.9.0) +524 more potentially affected by CVE-2024-21548 via bun (>=0.0.10 <=1.1.3)

bun NPM version =0.0.10, =1.0.0, =0.1.0, =0.0.1, =0.1.17, =1.0.0, =0.0.3, =1.1.21, =0.0.2, =0.1.0, =0.0.1, =1.6.0, =1.0.0, =1.0.2 and more Source cves: CVE-2024-21548 Source advisory: OSV:GHSA-V9MX-4PQQ-H232...

7.7CVSS5.7AI score0.00647EPSS
Exploits0
CVE
CVE
added 2024/12/18 6:6 a.m.82 views

CVE-2024-21548

CVE-2024-21548 affects the Bun runtime. Versions before 1.1.30 (and after 0.0.12, per sources) are vulnerable to a Prototype Pollution flaw caused by improper input sanitization in Bun’s APIs that accept objects. The issue can enable modifying object prototypes, with the downstream risk as descri...

7.7CVSS6AI score0.00647EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/18 6:6 a.m.9 views

CVE-2024-21548

Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...

7.7CVSS6AI score0.00647EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/12/18 6:6 a.m.23 views

CVE-2024-21548

Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...

7.7CVSS0.00647EPSS
Exploits0References3
OSV
OSV
added 2024/12/18 6:6 a.m.5 views

CVE-2024-21548

Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...

7.7CVSS6AI score0.00647EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2024/12/12 2:46 p.m.5 views

@agent_z/egg (>=1.0.0 <=1.0.2), @ccci/micro-server (>=1.0.57 <=1.0.132) +16 more potentially affected by CVE-2024-21548 via bun (>=0.0.2 <=1.1.3)

bun NPM version =0.0.2, =1.0.0, =1.0.57, =1.0.0, =0.0.0, =0.0.2, =0.0.3, =0.0.2, =0.0.3, =0.2.0, =0.0.55, =0.1.0, =0.1.1 and more Source cves: CVE-2024-21548 Source advisory: SNYK:JS-BUN-8499549...

7.7CVSS5.8AI score0.00647EPSS
Exploits0
Rows per page
Query Builder