24h | 7d | 30d

CVE-2026-29063

Overview

  • immutable-js
  • immutable-js
06 Mar 2026
Published
06 Mar 2026
Updated
CVSS v4.0
HIGH (8.7)
EPSS
0.06%
KEV

Description

Immutable.js provides many Persistent Immutable data structures. Prior to versions 3.8.3, 4.3.7, and 5.1.5, Prototype Pollution is possible in immutable via the mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject() APIs. This issue has been patched in versions 3.8.3, 4.3.7, and 5.1.5.

Statistics

  • 2 Posts
Last activity: 16 hours ago

Fediverse

Profile picture fallback
buherator @buherator
[RSS] Security Bulletin: IBM i is Affected by Use of Hard-coded Cryptographic Key, Cross-site Scripting, and Prototype Pollution Vulnerabilities in IBM WebSphere Application Server Liberty [CVE-2025-14923, CVE-2025-12635, CVE-2026-29063]

https://www.ibm.com/support/pages/node/7268448?myns=swgother&mynp=OCSSTS2D&mynp=OCSWG60&mynp=OCSSKWKM&mynp=OCSSB23CE&mynp=OCSS9QQS&mynp=OCSSC5L9&mync=A&cm_sp=swgother-_-OCSSTS2D-OCSWG60-OCSSKWKM-OCSSB23CE-OCSS9QQS-OCSSC5L9-_-A

That hard-coded key shouldn%27t be hard to find...
  • 0
  • 0
  • 1
  • 16h ago
Showing 31 to 31 of 31 CVEs