How severe is CVE-2024-34148?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.8 out of 10.

What type of vulnerability is CVE-2024-34148?

This is classified as CWE-1321, which is a common weakness in software security.

CVE-2024-34148

MEDIUM Year: 2024

CVSS v3 Score

6.8

Medium

Weakness Type

CWE-1321

View all →

Vulnerability Description

Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier programmatically disables the fix for CVE-2016-3721 whenever a build is triggered from a release tag, by setting the Java system property 'hudson.model.ParametersAction.keepUndefinedParameters'.

CVE-2021-3645

MEDIUM

CVSS:6.8(Medium)

merge is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

CWE-13212021

CVE-2022-2564

HIGH

CVSS:7.0(High)

Prototype Pollution in GitHub repository automattic/mongoose prior to 6.4.6.

CWE-13212022

CVE-2021-23771

MEDIUM

CVSS:6.5(Medium)

This affects all versions of package notevil; all versions of package argencoders-notevil. It is vulnerable to Sandbox Escape leading to Prototype pollution. The package fails to restrict access to th...

CWE-13212021

CVE-2023-26920

MEDIUM

CVSS:6.5(Medium)

fast-xml-parser before 4.1.2 allows __proto__ for Prototype Pollution.

CWE-13212023

CVE-2024-21509

MEDIUM

CVSS:6.5(Medium)

Versions of the package mysql2 before 3.9.4 are vulnerable to Prototype Poisoning due to insecure results object creation and improper user input sanitization passed through parserFn in text_parser.js...

CWE-13212024

CVE-2024-23339

MEDIUM

CVSS:6.5(Medium)

hoolock is a suite of lightweight utilities designed to maintain a small footprint when bundled. Starting in version 2.0.0 and prior to version 2.2.1, utility functions related to object paths (`get`,...

CWE-13212024

CVE-2024-34148

Vulnerability Description

Related Vulnerabilities

CVE-2021-3645

CVE-2022-2564

CVE-2021-23771

CVE-2023-26920

CVE-2024-21509

CVE-2024-23339