by vicarius
log in join community
by @Smartkeyss
19 Jul 2024
#cve_analysis

Write a blog analysis for a CVE

publish

polyfill.io in pdoc (CVE-2024-38526)

by @Smartkeyss
by @Smartkeyss
19 Jul 2024
#cve_analysis

Write a blog analysis for a CVE

publish

polyfill.io in pdoc (CVE-2024-38526)

CVEs

CVE-2024-38526
7.2 High Severity

PoC video

Summary

CVE-2024-38526 is a high-risk vulnerability due to the presence of polyfill.io CDN in pdoc math. Polyfill.io was acquired by a Chinese company and it contains malicious code. Users are advised to update to the latest version and use reliable CDN. Developers are advised to stop using polyfill.io.

Description

Tags

#cve-analysis#cve-mitigation#CVE-2024-38526#pdoc
users/photos/clsevlral8gef1hon15grbvup.jpg

@Smartkeyss

32 posts

I am just curious 😊 I use simple words to explain complicated things.

Total vcoins

88.9K

Comments (0)