VYPR
Critical severity9.8OSV Advisory· Published Apr 18, 2024· Updated Apr 15, 2026

CVE-2024-30564

CVE-2024-30564

Description

An issue inandrei-tatar nora-firebase-common between v.1.0.41 and v.1.12.2 allows a remote attacker to execute arbitrary code via a crafted script to the updateState parameter of the updateStateInternal method.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
@andrei-tatar/nora-firebase-commonnpm
>= 1.0.41, < 1.12.31.12.3

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.