VDB
CVE-2026-41242
CVE-2026-41242
PUBLISHED
Disponibile un Proof of Concept (PoC) per lo sfruttamento della CVE-2026-41242 presente in protobufjs, libreria JavaScript che permette di usare Protocol Buffers (un formato di serializzazione dati sviluppato da Google) direttamente in ambienti Node.js e browser. Tale libreria consente di definire strutture di dati in modo compatto ed efficiente e convertirle facilmente in oggetti JavaScript e viceversa.
EPSS 0.03% · 7.8th percentile
Risk Scores
EPSS Score
0.03%
7.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| protobufjs | protobufjs |
Timeline
- Apr 16, 2026 CVE Published
- Apr 18, 2026 PoC Published
- Apr 19, 2026 EPSS Score
- Apr 19, 2026 Security Advisory
- Apr 23, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score