CVE-2024-38989

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT

Description

izatop bunt v0.29.19 was discovered to contain a prototype pollution via the component /esm/qs.js. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

izatop/bunt
izatop/bunt
TypeSafe unit style Application Framework written in TypeScript for Node.js.
GitHubGitHub