Skip to main content

Ion

2 CVEs product

Monthly

CVE-2024-21634 Maven HIGH PATCH This Month

Amazon Ion is a Java implementation of the Ion data notation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Java Ion
NVD GitHub
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-30857 npm LOW PATCH Monitor

@aedart/support is the support package for Ion, a monorepo for JavaScript/TypeScript packages. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. This Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) vulnerability could allow attackers to modify object prototypes to inject properties affecting application logic.

Information Disclosure Prototype Pollution Ion
NVD GitHub
CVSS 3.1
3.7
EPSS
0.5%
EPSS 0% CVSS 7.5
HIGH PATCH This Month

Amazon Ion is a Java implementation of the Ion data notation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Java Ion
NVD GitHub
EPSS 0% CVSS 3.7
LOW PATCH Monitor

@aedart/support is the support package for Ion, a monorepo for JavaScript/TypeScript packages. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. This Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) vulnerability could allow attackers to modify object prototypes to inject properties affecting application logic.

Information Disclosure Prototype Pollution Ion
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy