4 matches found
CVE-2024-57074
creationtimestamp| type| source ---|---|--- 2025-02-05 22:16:46+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhhlxjv5qq2b...
CVE-2024-57074
A prototype pollution in the lib.merge function of xe-utils v3.5.31 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...
CVE-2024-57074
CVE-2024-57074 concerns xe-utils v3.5.31, where a prototype pollution in the lib.merge function enables DoS via a crafted payload. Affected component: xe-utils (lib.merge). Root cause: unsafe recursive merge/parsing allowing proto or path-based pollution. Impact: Denial of Service; remote code ex...
CVE-2024-57074
A prototype pollution in the lib.merge function of xe-utils v3.5.31 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...