Google Protobuf-kotlin-lite — known CVE vulnerabilities
Every CVE whose affected-product data names Google Protobuf-kotlin-lite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-7254 — CVSS 7.5 (high): Any project that parses untrusted Protocol Buffers data containing an arbitrary number of nested groups / series of SGROUP tags can…
CVE-2022-3171 — CVSS 4.3 (medium): A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of…