Unrated severityNVD Advisory· Published Jul 30, 2024· Updated Aug 2, 2024

CVE-2024-39010

Description

chase-moskal snapstate v0.0.9 was discovered to contain a prototype pollution via the function attemptNestedProperty. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

Affected products

chase-moskal/snapstatedescription
chase-moskal/snapstatellm-create
Range: =0.0.9

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

gist.github.com/mestrtee/af7a746df91ab5e944bd7a186816c262mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000