Lucene search
GoogleOSV:CVE-2024-38999HistoryJul 01, 2024 - 1:15 p.m.
CVE-2024-38999
2024-07-0113:15:05
Google
osv.dev
3
cve-2024-38999
jrburke requirejs
prototype pollution
arbitrary code execution
denial of service
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
8
Confidence
High
jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function s.contexts._.configure. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
Related
osv
osv
UBUNTU-CVE-2024-38999
2024-07-01 13:15:00
jrburke requirejs vulnerable to prototype pollution
2024-07-01 15:32:19
CGA-phxw-qhp9-c3m7
2024-10-02 01:51:54
cve
cve
CVE-2024-38999
2024-07-01 13:15:05
veracode
veracode
Prototype Pollution
2024-07-02 06:48:57
nvd
nvd
CVE-2024-38999
2024-07-01 13:15:05
github
github
jrburke requirejs vulnerable to prototype pollution
2024-07-01 15:32:19
wolfi
wolfi
CVE-2024-38999 vulnerabilities
2024-10-02 03:33:53
cvelist
cvelist
CVE-2024-38999
2024-07-01 00:00:00
debiancve
debiancve
CVE-2024-38999
2024-07-01 13:15:05
vulnrichment
vulnrichment
CVE-2024-38999
2024-07-01 00:00:00
ubuntucve
ubuntucve
CVE-2024-38999
2024-07-01 00:00:00
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
8
Confidence
High
Related for OSV:CVE-2024-38999