Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-53527

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.0037EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2025/02/06 6:31 a.m.8 views

@code-dungeon/yardstick (>=0.0.3 <=0.0.17), @kcutils/color (=0.2.0-rc.3) +39 more potentially affected by CVE-2024-57085 via @stryker-mutator/util (>=0.0.1 <=8.7.0)

@stryker-mutator/util NPM version =0.0.1, =0.0.3, =0.2.0-rc.0, =1.1.0, =1.0.0-alpha.3, =1.1.59, =1.0.0, =1.0.0, =5.2.0, =8.7.0 and more Source cves: CVE-2024-57085 Source advisory: OSV:GHSA-9J5Q-479X-43G2...

7.5CVSS5.8AI score0.0037EPSS
Exploits0
OSV
OSV
added 2025/02/06 6:31 a.m.4 views

GHSA-9J5Q-479X-43G2 @stryker-mutator/util vulnerable to Prototype Pollution

A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

7.5CVSS6.1AI score0.0037EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2025/02/06 6:31 a.m.6 views

@stryker-mutator/util vulnerable to Prototype Pollution

A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

7.5CVSS6.1AI score0.0037EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2025/02/05 10:15 p.m.13 views

CVE-2024-57085

A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

7.5CVSS0.0037EPSS
Exploits0References1
CVE
CVE
added 2025/02/05 12:0 a.m.81 views

CVE-2024-57085

CVE-2024-57085 affects the JavaScript library @stryker-mutator/util version 8.6.0, specifically the deepMerge function. A prototype pollution flaw in deepMerge can be triggered by a crafted payload, leading to Denial of Service (DoS). Some sources indicate an available PoC/ Exploitation in the wi...

7.5CVSS6.8AI score0.0037EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/05 12:0 a.m.5 views

CVE-2024-57085

A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

7.4AI score0.0037EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/05 12:0 a.m.13 views

CVE-2024-57085

A prototype pollution in the function deepMerge of @stryker-mutator/util v8.6.0 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

0.0037EPSS
Exploits0References1
Rows per page
Query Builder