8 matches found
EUVD-2024-53527
Malicious code in bioql PyPI...
@code-dungeon/yardstick (>=0.0.3 <=0.0.17), @kcutils/color (=0.2.0-rc.3) +39 more potentially affected by CVE-2024-57085 via @stryker-mutator/util (>=0.0.1 <=8.7.0)
@stryker-mutator/util NPM version =0.0.1, =0.0.3, =0.2.0-rc.0, =1.1.0, =1.0.0-alpha.3, =1.1.59, =1.0.0, =1.0.0, =5.2.0, =8.7.0 and more Source cves: CVE-2024-57085 Source advisory: OSV:GHSA-9J5Q-479X-43G2...
GHSA-9J5Q-479X-43G2 @stryker-mutator/util vulnerable to Prototype Pollution
A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...
@stryker-mutator/util vulnerable to Prototype Pollution
A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...
CVE-2024-57085
A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...
CVE-2024-57085
CVE-2024-57085 affects the JavaScript library @stryker-mutator/util version 8.6.0, specifically the deepMerge function. A prototype pollution flaw in deepMerge can be triggered by a crafted payload, leading to Denial of Service (DoS). Some sources indicate an available PoC/ Exploitation in the wi...
CVE-2024-57085
A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...
CVE-2024-57085
A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...