THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2024-39001

Assignermitre
Reserved2024-06-21
Published2024-07-01
Updated2024-07-10

Description

ag-grid-enterprise v31.3.2 was discovered to contain a prototype pollution via the component _ModuleSupport.jsonApply. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

References

https://gist.github.com/mestrtee/c1590660750744f25e86ba1bf240844b

https://gist.github.com/mestrtee/f8037d492dab0d77bca719e05d31c08b

https://gist.github.com/mestrtee/18e8c27f3a6376e7cf082cfe1ca766fa

cve.org CVE-2024-39001

nvd.nist.gov CVE-2024-39001

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-39001
© Copyright 2024 THREATINT. Made in Cyprus with +