VIR Vulnerability Intelligence Relay

Package impact

java Maven / com.google.protobuf:protobuf-java

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2021-22570 medium 5.5 4y ago Withdrawn Advisory: NULL Pointer Dereference in Protocol Buffers redhatsuserockylinuxdebian+5
CVE-2024-7254 unknown 2y ago protobuf-java has potential Denial of Service issue susedebianrubyjava
CVE-2022-3509 unknown 4y ago A parsing issue similar to CVE-2022-3171, but with textformat in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. Inputs contain… susedebianjava
CVE-2022-3510 unknown 4y ago Protobuf Java vulnerable to Uncontrolled Resource Consumption susedebianjava
CVE-2022-3171 unknown 4y ago A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. Inputs containing multiple instances of non… susedebianrubyjava
CVE-2021-22569 unknown 4y ago An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser fo… susedebianrubyjava