How severe is CVE-2024-39011?

CVE-2024-39011 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-39011

Name: redoc
Author: chargeover

9.8CRITICAL

Prototype Pollution in chargeover redoc v2.0.9-rc.69 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) and cause other impacts via the function mergeObjects.

Published: 7/30/2024Updated: 11/21/2024

Description

Prototype Pollution in chargeover redoc v2.0.9-rc.69 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) and cause other impacts via the function mergeObjects.

AI AnalysisPowered by AI

Affected Products

chargeoverredoc

2.0.9

References

https://gist.github.com/mestrtee/693ef1c8b0a5ff1ae19f253381711f3e
Exploit
https://gist.github.com/mestrtee/693ef1c8b0a5ff1ae19f253381711f3e
Exploit