Launch Week Day 1: Announcing Security Design Review
Start for Free
npm

protobufjs

View on npm registry
13 Total advisories
13 Vulnerabilities
0 Malware

Vulnerabilities

MEDIUM 5.3
npm

CVE-2026-45740

protobufjs: Denial of Service via unbounded recursive JSON descriptor expansion
MEDIUM 5.3
npm

CVE-2026-44288

protobufjs has overlong UTF-8 decoding
HIGH 7.5
npm

CVE-2026-44290

protobuf.js: Process-wide denial of service through unsafe option paths
MEDIUM 5.3
npm

CVE-2026-44292

protobuf.js: Prototype injection in generated message constructors
HIGH 8.1
npm

CVE-2026-44291

protobuf.js: Code generation gadget after prototype pollution
HIGH 7.5
npm

CVE-2026-44289

protobuf.js: Denial of service through unbounded protobuf recursion
MEDIUM 5.3
npm

CVE-2026-44294

protobuf.js: Denial of service from crafted field names in generated code
UNKNOWN
npm

CVE-2026-44293

protobuf.js: Code injection through bytes field defaults in generated toObject code
CRITICAL 9.8
npm

CVE-2026-41242

Arbitrary code execution in protobufjs
CRITICAL 9.8
npm

CVE-2023-36665

protobufjs Prototype Pollution vulnerability
HIGH 7.5
npm

CVE-2022-25878

Prototype Pollution in protobufjs
MEDIUM 5.5
npm

CVE-2018-3738

Denial of Service in protobufjs
UNKNOWN
npm

GHSA-4gpv-cvmq-6526

Denial of Service in protobufjs

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes