Security Advisory
CVE-2024-38999
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function s.contexts._.configure. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.