Lucene search
K

4 matches found

OSV
OSV
added 2026/06/15 5:27 p.m.8 views

GHSA-F38Q-MGVJ-VPH7 protobufjs : Schema-derived names can shadow runtime-significant properties

Summary protobufjs accepted certain schema-derived names that could collide with properties used by protobufjs runtime helpers. The known affected names are fields named hasOwnProperty, field or oneof names such as $type when loaded through protobufjs JSON/reflection descriptors, and service...

5.3CVSS5.7AI score0.00238EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/15 5:27 p.m.6 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions in the schema-derived names that collide with runtime-significant properties. An attacker can cause affected message or service types to become unusable, resulting in denial of servic...

6.9CVSS5.6AI score0.00238EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/06/15 5:27 p.m.14 views

protobufjs : Schema-derived names can shadow runtime-significant properties

Summary protobufjs accepted certain schema-derived names that could collide with properties used by protobufjs runtime helpers. The known affected names are fields named hasOwnProperty, field or oneof names such as $type when loaded through protobufjs JSON/reflection descriptors, and service...

5.3CVSS5.7AI score0.00238EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.10 views

PT-2026-49584

Name of the Vulnerable Software and Affected Versions protobufjs versions prior to 8.6.0 protobufjs versions prior to 7.6.3 Description protobufjs accepts certain schema-derived names that collide with properties used by runtime helpers. Specifically, this occurs with fields named hasOwnProperty,...

5.3CVSS5.5AI score0.00238EPSS
Exploits0References7
Rows per page
Query Builder