CVE-2026-41242 | protobufjs protobuf.js up to 7.5.4/8.0.0 Type code injection (GHSA-xq3m-2v4x-88gg / EUVD-2026-23678)

A vulnerability has been found in protobufjs protobuf.js up to 7.5.4/8.0.0 and classified as critical. This vulnerability affects unknown code. This manipulation of the argument Type causes code injection.

This vulnerability is tracked as CVE-2026-41242. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More