CVE-2026-41242 | protobufjs protobuf.js up to 7.5.4/8.0.0 Type code injection (GHSA-xq3m-2v4x-88gg)

Inserito da Angelo Barbosa | Apr 18, 2026 | CVE

A vulnerability has been found in protobufjs protobuf.js up to 7.5.4/8.0.0 and classified as critical. This vulnerability affects unknown code. This manipulation of the argument Type causes code injection.

This vulnerability is tracked as CVE-2026-41242. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-41242 | protobufjs protobuf.js up to 7.5.4/8.0.0 Type code injection (GHSA-xq3m-2v4x-88gg)

Post correlati

CVE-2023-53992 | Linux Kernel up to 6.1.54/6.5.4 mac80211 state issue

CVE-2025-11663 | Campcodes Online Beauty Parlor Management System 1.0 manage-services.php sername sql injection

CVE-2024-24863 | Linux Kernel up to 6.9-rc1 malidp_mw_connector_reset null pointer dereference

CVE-2024-8907 | Google Chrome up to 128.0.6613.137 Omnibox input validation