Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:33 a.m.2 views

CVE-2024-39010

chase-moskal snapstate v0.0.9 was discovered to contain a prototype pollution via the function attemptNestedProperty. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

9.8CVSS8.2AI score0.00442EPSS
Exploits1References1
OSV
OSVadded 2024/07/30 8:15 p.m.11 views

CVE-2024-39010

chase-moskal snapstate v0.0.9 was discovered to contain a prototype pollution via the function attemptNestedProperty. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

9.8CVSS8.2AI score
Exploits0References1
NVD
NVDadded 2024/07/30 8:15 p.m.10 views

CVE-2024-39010

chase-moskal snapstate v0.0.9 was discovered to contain a prototype pollution via the function attemptNestedProperty. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

9.8CVSS0.00442EPSS
Exploits1References1
CVE
CVEadded 2024/07/30 12:0 a.m.44 views

CVE-2024-39010

CVE-2024-39010 affects chase-moskal/snapstate v0.0.9. The Red Hat, Veracode, NVD, OSV, CVE, CNNVD and PT Security entries describe a prototype pollution flaw in the function attemptNestedProperty, enabling an attacker to inject arbitrary properties and potentially execute arbitrary code or cause ...

9.8CVSS8.3AI score0.00442EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/07/30 12:0 a.m.9 views

CVE-2024-39010

chase-moskal snapstate v0.0.9 was discovered to contain a prototype pollution via the function attemptNestedProperty. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

8.2AI score0.00442EPSS
Exploits1References1
Cvelist
Cvelistadded 2024/07/30 12:0 a.m.10 views

CVE-2024-39010

chase-moskal snapstate v0.0.9 was discovered to contain a prototype pollution via the function attemptNestedProperty. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...

0.00442EPSS
Exploits1References1
CNNVD
CNNVDadded 2024/07/30 12:0 a.m.1 views

snapstate 安全漏洞

snapstate is a library by the individual developer Chase Moskal. A security vulnerability exists in snapstate version v0.0.9, which stems from the discovery of a contained prototype contamination via the attemptNestedProperty function. An attacker could exploit the vulnerability to execute...

9.8CVSS7.6AI score0.00442EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/07/30 12:0 a.m.2 views

PT-2024-28320 · Snapstate · Snapstate

Name of the Vulnerable Software and Affected Versions: snapstate version 0.0.9 Description: The issue is related to a prototype pollution vulnerability via the attemptNestedProperty function. This allows attackers to execute arbitrary code or cause a Denial of Service DoS by injecting arbitrary...

9.8CVSS8.2AI score0.00442EPSS
Exploits1References5
Snyk
Snykadded 2022/02/18 2:30 p.m.1 views

Access Restriction Bypass

Overview github.com/snapcore/snapd/overlord/snapstate is an app packages for desktop, cloud and IoT that update automatically, are easy to install, secure, cross-platform and dependency-free. They're being used on millions of Linux systems every day. Affected versions of this package are vulnerab...

8.2CVSS5.8AI score0.00088EPSS
Exploits1References2
Rows per page
Query Builder