{"id":"CVE-2024-38999","details":"jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function s.contexts._.configure. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.","aliases":["GHSA-x3m3-4wpv-5vgc"],"modified":"2026-01-30T00:56:16.565830Z","published":"2024-07-01T13:15:05Z","withdrawn":"2026-01-27T04:19:00.325769Z","related":["CGA-jchg-39g7-49r6","SUSE-SU-2024:3771-1"],"references":[{"type":"WEB","url":"https://gist.github.com/mestrtee/9acae342285bd2998fa09ebcb1e6d30a"}],"schema_version":"1.7.3"}