VYPR
Medium severity6.3NVD Advisory· Published Jul 1, 2024· Updated Jun 17, 2026

CVE-2024-39001

CVE-2024-39001

Description

ag-grid-enterprise v31.3.2 was discovered to contain a prototype pollution via the component _ModuleSupport.jsonApply. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
@ag-grid-enterprise/chartsnpm
>= 32.0.0, < 32.0.132.0.1
ag-grid-communitynpm
>= 32.0.0, < 32.0.132.0.1
ag-grid-enterprisenpm
>= 32.0.0, < 32.0.132.0.1
@ag-grid-enterprise/chartsnpm
< 31.3.431.3.4
ag-grid-communitynpm
< 31.3.431.3.4
ag-grid-enterprisenpm
< 31.3.431.3.4

Affected products

51

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.