Vulnerability Details CVE-2024-24292
A Prototype Pollution issue in Aliconnect /sdk v.0.0.6 allows an attacker to execute arbitrary code via the aim function in the aim.js component.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.2%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2024-24292
-
cpe:2.3:a:aliconnect:software_development_kit:0.0.6