How severe is CVE-2024-39011?

CVE-2024-39011 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-39011

Name: redoc
Author: chargeover

9.8CRITICAL

Prototype Pollution in chargeover redoc v2.0.9-rc.69 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) and cause other impacts via the function mergeObjects.

Publicado: 7/30/2024Actualizado: 11/21/2024

Descripción

Prototype Pollution in chargeover redoc v2.0.9-rc.69 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) and cause other impacts via the function mergeObjects.

Análisis IAImpulsado por IA

Productos Afectados

chargeoverredoc

2.0.9

Referencias

https://gist.github.com/mestrtee/693ef1c8b0a5ff1ae19f253381711f3e
Exploit
https://gist.github.com/mestrtee/693ef1c8b0a5ff1ae19f253381711f3e
Exploit