org.webjars.npm:protobufjs@6.11.3 vulnerabilities
-
latest version
7.2.6
-
latest non vulnerable version
-
first published
8 years ago
-
latest version published
18 days ago
-
licenses detected
- [6.3.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.webjars.npm:protobufjs package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Prototype Pollution. A user-controlled protobuf message can be used by an attacker to pollute the prototype of
Note: This is a different issue from CVE-2022-25878 How to fix Prototype Pollution? Upgrade |
[6.10.0,6.11.4)
[7.2.0,7.2.4)
|