protobufjs

Top products

The 15 most recently published vulnerabilities affecting protobufjs.

• CVE-2026-54269protobufjs: Schema-derived names can shadow runtime-significant properties5.3Jun 22, 2026
• CVE-2026-48712protobufjs: Denial of service through unbounded Any expansion during JSON conversion7.5Jun 22, 2026
• CVE-2026-54270protobufjs: Memory amplification from preserved unknown fields in binary decode5.3Jun 22, 2026
• CVE-2026-54271protobufjs-cli: Code injection in pbjs static output from crafted JSON descriptor names8.2Jun 22, 2026
• CVE-2026-44295protobufjs-cli: Code injection in pbjs static output from crafted schema names8.7May 13, 2026
• CVE-2026-42290protobufjs-cli: OS Command Injection7.8May 13, 2026
• CVE-2026-45740protobufjs: Denial of Service via unbounded recursive JSON descriptor expansion5.3May 13, 2026
• CVE-2026-44294protobufjs: Denial of service from crafted field names in generated code5.3May 13, 2026
• CVE-2026-44293protobufjs: Code injection through bytes field defaults in generated toObject code8.8May 13, 2026
• CVE-2026-44292protobufjs: Prototype injection in generated message constructors5.3May 13, 2026
• CVE-2026-44291protobufjs: Code generation gadget after prototype pollution8.1May 13, 2026
• CVE-2026-44290protobufjs: Process-wide denial of service through unsafe option paths7.5May 13, 2026
• CVE-2026-44289protobufjs: Denial of service through unbounded protobuf recursion7.5May 13, 2026
• CVE-2026-44288protobufjs: Overlong UTF-8 decoding5.3May 13, 2026
• CVE-2026-41242protobufjs has an arbitrary code execution issue9.8Apr 18, 2026