by vicarius
log in join community
by @Smartkeyss
19 Jul 2024
#cve_analysis

Write a blog analysis for a CVE

publish

polyfill.io in pdoc (CVE-2024-38526)

by @Smartkeyss
by @Smartkeyss
19 Jul 2024
#cve_analysis

Write a blog analysis for a CVE

publish

polyfill.io in pdoc (CVE-2024-38526)

CVEs

CVE-2024-38526
7.2 High Severity

PoC video

Summary

CVE-2024-38526 is a high-risk vulnerability due to the presence of polyfill.io CDN in pdoc math. Polyfill.io was acquired by a Chinese company and it contains malicious code. Users are advised to update to the latest version and use reliable CDN. Developers are advised to stop using polyfill.io.

Description

Tags

#cve-analysis#cve-mitigation#CVE-2024-38526#pdoc
users/photos/clsevlral8gef1hon15grbvup.jpg

@Smartkeyss

63 posts

I am just curious 😊 I use simple words to explain complicated things. discord: @rxs_s

Total vcoins

0

Social media links

Comments (0)