Lucene search
MitreVULNRICHMENT:CVE-2024-39018HistoryJul 01, 2024 - 12:00 a.m.
CVE-2024-39018
2024-07-0100:00:00
mitre
github.com
2
vulnerability
harvey-woo
cat5th/key-serializer
prototype pollution
arbitrary code
denial of service
harvey-woo cat5th/key-serializer v0.2.5 was discovered to contain a prototype pollution via the function “query”. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:harvey-woo:key-serializer:0.2.5:*:*:*:*:*:*:*"
],
"vendor": "harvey-woo",
"product": "key-serializer",
"versions": [
{
"status": "affected",
"version": "0.2.5"
}
],
"defaultStatus": "unknown"
}
]Related
cvelist
cvelist
CVE-2024-39018
2024-07-01 00:00:00
veracode
veracode
Prototype Pollution
2024-07-02 06:55:53
nvd
nvd
CVE-2024-39018
2024-07-01 13:15:05
osv
osv
@cat5th/key-serializer Prototype Pollution vulnerability
2024-07-01 15:32:30
cve
cve
CVE-2024-39018
2024-07-01 13:15:05
github
github
@cat5th/key-serializer Prototype Pollution vulnerability
2024-07-01 15:32:30
AI Score
8.2
Confidence
High
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-39018