Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added yesterday7 views

CVE-2026-15538

A flaw was found in PrimeFaces PrimeReact. A remote attacker can exploit a weakness in the ObjectUtils.mutateFieldData function within the component API. This allows for the improper modification of object prototype attributes, potentially leading to unexpected behavior or further attacks. This...

6.5CVSS6.6AI score0.00256EPSS
Exploits0References10
EUVD
EUVD
added yesterday6 views

EUVD-2026-43294

A weakness has been identified in primefaces primereact up to 10.9.8. This issue affects the function ObjectUtils.mutateFieldData of the component API. This manipulation of the argument Field causes improperly controlled modification of object prototype attributes. The attack is possible to be...

6.5CVSS6.4AI score0.00256EPSS
Exploits0References8
NVD
NVD
added yesterday4 views

CVE-2026-15538

A weakness has been identified in primefaces primereact up to 10.9.8. This issue affects the function ObjectUtils.mutateFieldData of the component API. This manipulation of the argument Field causes improperly controlled modification of object prototype attributes. The attack is possible to be...

6.5CVSS0.00256EPSS
Exploits0References7
Cvelist
Cvelist
added yesterday19 views

CVE-2026-15538 primefaces primereact API ObjectUtils.mutateFieldData prototype pollution

A weakness has been identified in primefaces primereact up to 10.9.8. This issue affects the function ObjectUtils.mutateFieldData of the component API. This manipulation of the argument Field causes improperly controlled modification of object prototype attributes. The attack is possible to be...

6.5CVSS0.00256EPSS
Exploits0References7
CVE
CVE
added yesterday8 views

CVE-2026-15538

CVE-2026-15538 affects PrimeFaces PrimeReact up to 10.9.8. The vulnerability is in the API function ObjectUtils.mutateFieldData, where manipulation of the argument Field enables prototype attribute modification (prototype pollution). The attack is stated as remotely exploitable. The issue notes t...

6.5CVSS6.4AI score0.00256EPSS
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/05/22 2:9 p.m.4 views

Malicious code in primereact-sass-theme (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc148ba6f2b6ad7d439003a3b980ba24d27a619fda1198bfa32adfc54d5bb350 Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References1
OSV
OSV
added 2025/05/22 2:9 p.m.4 views

MAL-2025-4574 Malicious code in primereact-sass-theme (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc148ba6f2b6ad7d439003a3b980ba24d27a619fda1198bfa32adfc54d5bb350 Any computer that has this package installed or running should be considered...

7AI score
Exploits0References1
Rows per page
Query Builder