jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function config. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
Metrics
Affected Vendors & Products
References
History
Mon, 09 Sep 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Requirejs
Requirejs requirejs |
|
CPEs | cpe:2.3:a:requirejs:requirejs:*:*:*:*:*:*:*:* | |
Vendors & Products |
Requirejs
Requirejs requirejs |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-07-01T00:00:00
Updated: 2024-08-02T04:19:20.568Z
Reserved: 2024-06-21T00:00:00
Link: CVE-2024-38998
Vulnrichment
Updated: 2024-07-01T20:54:26.234Z
NVD
Status : Modified
Published: 2024-07-01T13:15:05.223
Modified: 2024-11-21T09:27:04.827
Link: CVE-2024-38998
Redhat