Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and TypeScript implementation of Protocol Buffers (Protobuf), that, if successfully exploited, could result in remote code execution (RCE) and denial-of-service (DoS) attacks.
"In affected environments, a single malicious protobuf schema, descriptor, or crafted payload could be enough to trigger
Original report published on: https://thehackernews.com/2026/06/six-proto6-vulnerabilities-in.html