github.com/protocolbuffers/protobuf (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/protocolbuffers/protobuf, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2021-22570 — CVSS 6.5 (medium): Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the…