{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2024-51999", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-11-04T17:46:16.778Z", "datePublished": "2025-12-01T20:17:53.641Z", "dateUpdated": "2025-12-01T20:28:00.971Z"}, "containers": {"cna": {"title": "express improperly controls modification of query properties", "problemTypes": [{"descriptions": [{"cweId": "CWE-915", "lang": "en", "description": "CWE-915: Improperly Controlled Modification of Dynamically-Determined Object Attributes", "type": "CWE"}]}], "metrics": [{"cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "LOW", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "baseScore": 2.7, "baseSeverity": "LOW", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "version": "4.0"}}], "references": [{"name": "https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6"}, {"name": "https://github.com/expressjs/express/commit/2f64f68c37c64ae333e41ff38032d21860f22255", "tags": ["x_refsource_MISC"], "url": "https://github.com/expressjs/express/commit/2f64f68c37c64ae333e41ff38032d21860f22255"}, {"name": "https://github.com/expressjs/express/releases/tag/4.22.0", "tags": ["x_refsource_MISC"], "url": "https://github.com/expressjs/express/releases/tag/4.22.0"}, {"name": "https://github.com/expressjs/express/releases/tag/v5.2.0", "tags": ["x_refsource_MISC"], "url": "https://github.com/expressjs/express/releases/tag/v5.2.0"}], "affected": [{"vendor": "expressjs", "product": "express", "versions": [{"version": ">= 5.0.0, < 5.2.0", "status": "affected"}, {"version": "< 4.22.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2025-12-01T20:17:53.641Z"}, "descriptions": [{"lang": "en", "value": "Express.js minimalist web framework for node. Prior to 5.2.0 and 4.22.0, when using the extended query parser in express ('query parser': 'extended'), the request.query object inherits all object prototype properties, but these properties can be overwritten by query string parameter keys that match the property names. This vulnerability is fixed in 5.2.0 and 4.22.0."}], "source": {"advisory": "GHSA-pj86-cfqh-vqx6", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-12-01T20:27:51.983670Z", "id": "CVE-2024-51999", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-01T20:28:00.971Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-51999", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-12-01T20:27:51.983670Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-01T20:27:56.925Z"}}], "cna": {"title": "express improperly controls modification of query properties", "source": {"advisory": "GHSA-pj86-cfqh-vqx6", "discovery": "UNKNOWN"}, "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 2.7, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "LOW", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE"}}], "affected": [{"vendor": "expressjs", "product": "express", "versions": [{"status": "affected", "version": ">= 5.0.0, < 5.2.0"}, {"status": "affected", "version": "< 4.22.0"}]}], "references": [{"url": "https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6", "name": "https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/expressjs/express/commit/2f64f68c37c64ae333e41ff38032d21860f22255", "name": "https://github.com/expressjs/express/commit/2f64f68c37c64ae333e41ff38032d21860f22255", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/expressjs/express/releases/tag/4.22.0", "name": "https://github.com/expressjs/express/releases/tag/4.22.0", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/expressjs/express/releases/tag/v5.2.0", "name": "https://github.com/expressjs/express/releases/tag/v5.2.0", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Express.js minimalist web framework for node. Prior to 5.2.0 and 4.22.0, when using the extended query parser in express ('query parser': 'extended'), the request.query object inherits all object prototype properties, but these properties can be overwritten by query string parameter keys that match the property names. This vulnerability is fixed in 5.2.0 and 4.22.0."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-915", "description": "CWE-915: Improperly Controlled Modification of Dynamically-Determined Object Attributes"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2025-12-01T20:17:53.641Z"}}}, "cveMetadata": {"cveId": "CVE-2024-51999", "state": "PUBLISHED", "dateUpdated": "2025-12-01T20:28:00.971Z", "dateReserved": "2024-11-04T17:46:16.778Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2025-12-01T20:17:53.641Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Express.js minimalist web framework for node. Prior to 5.2.0 and 4.22.0, when using the extended query parser in express ('query parser': 'extended'), the request.query object inherits all object prototype properties, but these properties can be overwritten by query string parameter keys that match the property names. This vulnerability is fixed in 5.2.0 and 4.22.0."}], "id": "CVE-2024-51999", "lastModified": "2025-12-01T21:15:49.100", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "UNREPORTED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2025-12-01T21:15:49.100", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/expressjs/express/commit/2f64f68c37c64ae333e41ff38032d21860f22255"}, {"source": "security-advisories@github.com", "url": "https://github.com/expressjs/express/releases/tag/4.22.0"}, {"source": "security-advisories@github.com", "url": "https://github.com/expressjs/express/releases/tag/v5.2.0"}, {"source": "security-advisories@github.com", "url": "https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-915"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{}