CVE-2025-57321 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Ob…
Critical CVSS: 9.8

CVE-2025-57321

A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.
Vendor
Magix-combine-ex Project
Product
Magix-combine-ex
CWE
CWE-1321
Yayın Tarihi
2025-09-24 20:15:31
Güncelleme
2025-10-17 13:24:09
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-1321 Magix-combine-ex CRITICAL Magix-combine-ex Project 2025

Referanslar

https://github.com/VulnSageAgent/PoCs/blob/main/JavaScript/prototype-pollution/magix-combine-ex%401.2.10/index.js https://github.com/VulnSageAgent/PoCs/tree/main/JavaScript/prototype-pollution/CVE-2025-57321