jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function config. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
History

Mon, 09 Sep 2024 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Requirejs
Requirejs requirejs
CPEs cpe:2.3:a:requirejs:requirejs:*:*:*:*:*:*:*:*
Vendors & Products Requirejs
Requirejs requirejs

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-07-01T00:00:00

Updated: 2024-08-02T04:19:20.568Z

Reserved: 2024-06-21T00:00:00

Link: CVE-2024-38998

cve-icon Vulnrichment

Updated: 2024-07-01T20:54:26.234Z

cve-icon NVD

Status : Modified

Published: 2024-07-01T13:15:05.223

Modified: 2024-11-21T09:27:04.827

Link: CVE-2024-38998

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-07-01T00:00:00Z

Links: CVE-2024-38998 - Bugzilla