216.73.217.24

CVE-2024-39018

· Published 01/07/2024 13:15 · Modified 01/07/2024 16:37

Labels: CVE-2024-39018 2024-07-01CVE-2024-39018[email protected]

Essential information

Published
01/07/2024 13:15
Modified
01/07/2024 16:37
Author
Creator
CISA KEV
No
CWE

Description

harvey-woo cat5th/key-serializer v0.2.5 was discovered to contain a prototype pollution via the function "query". This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References