7 matches found
CVE-2024-21548
Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...
@01ht/ht-api-helper-functions (>=1.0.0 <=1.0.2), @1amageek/tradable (>=0.1.0 <=0.9.0) +524 more potentially affected by CVE-2024-21548 via bun (>=0.0.10 <=1.1.3)
bun NPM version =0.0.10, =1.0.0, =0.1.0, =0.0.1, =0.1.17, =1.0.0, =0.0.3, =1.1.21, =0.0.2, =0.1.0, =0.0.1, =1.6.0, =1.0.0, =1.0.2 and more Source cves: CVE-2024-21548 Source advisory: OSV:GHSA-V9MX-4PQQ-H232...
CVE-2024-21548
CVE-2024-21548 affects the Bun runtime. Versions before 1.1.30 (and after 0.0.12, per sources) are vulnerable to a Prototype Pollution flaw caused by improper input sanitization in Bun’s APIs that accept objects. The issue can enable modifying object prototypes, with the downstream risk as descri...
CVE-2024-21548
Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...
CVE-2024-21548
Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...
CVE-2024-21548
Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...
@agent_z/egg (>=1.0.0 <=1.0.2), @ccci/micro-server (>=1.0.57 <=1.0.132) +16 more potentially affected by CVE-2024-21548 via bun (>=0.0.2 <=1.1.3)
bun NPM version =0.0.2, =1.0.0, =1.0.57, =1.0.0, =0.0.0, =0.0.2, =0.0.3, =0.0.2, =0.0.3, =0.2.0, =0.0.55, =0.1.0, =0.1.1 and more Source cves: CVE-2024-21548 Source advisory: SNYK:JS-BUN-8499549...