[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fP-a-rfjYBAtjg8F4rDiCVLqmWOTypb8q4C653XTF8mQ":3},{"article":4,"iocs":51},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":33,"category":34,"article_tags":38},"593a58a7-a54e-4897-b388-16ef81955063","Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS","six-proto6-vulnerabilities-in-protobuf-js-expose-node-js-apps-to-rce-and-dos-85f025","Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and TypeScript implementation of Protocol Buffers (Protobuf), that, if successfully exploited, could result in remote code execution (RCE) and denial-of-service (DoS) attacks. \"In affected environments, a single malicious protobuf schema, descriptor, or crafted payload could be enough to trigger","Cybersecurity researchers have identified six vulnerabilities, collectively named Proto6, in the protobuf.js library, a JavaScript implementation of Protocol Buffers. These flaws, ranging in severity, can lead to remote code execution (RCE) and denial-of-service (DoS) attacks, particularly impacting Node.js applications, Google Cloud client libraries, and CI\u002FCD pipelines. The vulnerabilities stem from the library's default trust in schemas and metadata, potentially allowing attackers to poison CI\u002FCD workflows or crash services.","Six vulnerabilities in protobuf.js could lead to RCE and DoS in Node.js apps.","Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS Ravie LakshmananJun 10, 2026Vulnerability \u002F JavaScript Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and TypeScript implementation of Protocol Buffers (Protobuf), that, if successfully exploited, could result in remote code execution (RCE) and denial-of-service (DoS) attacks. \"In affected environments, a single malicious protobuf schema, descriptor, or crafted payload could be enough to trigger crashes, runtime corruption, or even code execution,\" Cyera security researcher Assaf Morag said. The vulnerabilities have been codenamed Proto6. Protobuf is a free and open-source, language-agnostic mechanism for serializing structured data. It was originally developed and used internally by Google before it was made publicly available in 2008. The identified vulnerabilities affect Node.js applications that use protobuf.js, Google Cloud client libraries, messaging frameworks like Baileys, and CI\u002FCD pipelines. Per Cyera, any Node.js service that deserializes Protobuf data or generates code from schemas with protobuf.js is likely impacted as well. A brief description of each of the flaws is below - CVE-2026-44289 (CVSS score: 7.5): DoS through unbounded protobuf recursion CVE-2026-44290 (CVSS score: 7.5): Process-wide DoS when loading schemas with unsafe option paths CVE-2026-44291 (CVSS score: 8.1): Code generation gadget after prototype pollution CVE-2026-44292 (CVSS score: 5.3): Prototype injection in generated message constructors CVE-2026-44294 (CVSS score: 5.3): DoS from crafted field names in generated code CVE-2026-44295 (CVSS score: 8.7): Code injection in pbjs static output from crafted schema names Cyera said all the vulnerabilities stem from the library's handling of schema and metadata as trusted by default. This validation oversight could influence application behavior and lead to code execution. \"While exploitation of these vulnerabilities generally requires specific conditions, those conditions are increasingly common in data and AI ecosystems that routinely exchange data, schemas, and configuration files across services, repositories, cloud platforms, and third-party integrations,\" Morag noted. In a potential attack scenario, a bad actor could introduce a malicious protobuf schema to poison CI\u002FCD workflows, leaking build secrets in the process (CVE-2026-44295), or crash Node.js services such as WhatsApp bots built using Baileys, a WhatsApp Web API automation TypeScript library, by means of a specially crafted message (CVE-2026-44292). The most severe of the lot is CVE-2026-44291, which results in code execution when a Node.js application accepts attacker-controlled input. \"That input reaches a prototype pollution gadget,\" security researcher Vladimir Tokarev explained. \"Later, the same process uses protobuf.js to encode or decode a message. Because protobuf.js resolves type names through plain property lookups, a polluted Object.prototype can make an attacker-controlled string look like a valid protobuf primitive.\" \"Protobuf.js then inserts that string into a generated encoder or decoder function and compiles it with Function(). The attacker gets arbitrary JavaScript execution inside the Node.js process.\" The following versions of the tool are vulnerable - protobuf.js: versions \u003C= 7.5.5 and >= 8.0.0 \u003C= 8.0.1 protobufjs-cli: versions \u003C= 1.2.0 and >= 2.0.0 \u003C= 2.0.1 Patches for the flaws are available in protobufjs 7.5.6 and 8.0.2, and protobufjs-cli 1.2.1 and 2.0.2. Users are advised to apply the latest fixes to safeguard against potential threats. \"Because protobuf.js is heavily used inside databases, vector stores, inference pipelines, orchestration systems, CI\u002FCD tooling, and cloud SDKs, successful exploitation could impact sensitive enterprise and AI workloads at scale,\" Cyera said. \"Modern software increasingly treats schemas, metadata, and configuration files as trusted inputs that drive automation, orchestration, and code generation. When those trust assumptions break, data can become behavior. That shift creates new attack surfaces that security teams must learn to identify and manage.\" Found this article interesting? Follow us on Google News, Twitter and LinkedIn to read more exclusive content we post. SHARE     Tweet Share Share Share SHARE  CI\u002FCD, cybersecurity, denial of service, Google Cloud, JavaScript, node.js, remote code execution, TypeScript, Vulnerability ⚡ Top Stories This Week Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public ⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs Miasma Worm Hits 73 Microsoft GitHub Repositories in Major Supply Chain Attack Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories Microsoft Fixes One-Click GitHub Dev Attack That Let Attackers Steal OAuth Tokens Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479) Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes New HTTP\u002F2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy and Cloudflare ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors + 20 New Stories ⭐ Featured Resources Get the 2026 Guide to Govern and Secure Enterprise AI Agents at Scale Catch 88% of Malware Threats in Under 60 Seconds with Live Sandbox Analysis [Guide] Transform Network Operations with Intelligent Workflows See How Agentic AI Cuts Your SOC Triage Time in Half [Get a Demo]","https:\u002F\u002Fthehackernews.com\u002F2026\u002F06\u002Fsix-proto6-vulnerabilities-in.html","https:\u002F\u002Fblogger.googleusercontent.com\u002Fimg\u002Fb\u002FR29vZ2xl\u002FAVvXsEiJXkAy-j0jwPWQiC9bJinbwINT6pxRmO7CJ_df4bkbAP3VD-xU8oblGB5ZBBR1oLMN0uqf_lBb5al4KSR82lU1kZsXu14TAMaXi6kIjcp5xxk5yLKnOCTloqgZd6w_PuzPxTxNROksgp9pld0D9HoxceBwprkC5cDXEvoSP64bzC_UZyZthInrECAReAeH\u002Fs1600\u002Fprotobuf.jpg","2026-06-10T05:08:35+00:00","2026-06-10T06:00:09.304727+00:00",9,[18,21,24,26,28,31],{"name":19,"type":20},"protobuf.js","product",{"name":22,"type":23},"Protocol Buffers","technology",{"name":25,"type":20},"Google Cloud client libraries",{"name":27,"type":20},"Baileys",{"name":29,"type":30},"Google","vendor",{"name":32,"type":20},"Node.js","80544778-fabb-4dcd-aa35-17492e5dcf4f",{"id":33,"icon":35,"name":36,"slug":37},null,"Vulnerabilities","vulnerabilities",[39,44,46],{"category":40},{"id":41,"icon":35,"name":42,"slug":43},"26b0b636-0e31-4db1-bffb-61bdf9f20a58","Supply Chain","supply-chain",{"category":45},{"id":33,"icon":35,"name":36,"slug":37},{"category":47},{"id":48,"icon":35,"name":49,"slug":50},"89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5","Malware","malware",[52,56,59,62,65,68],{"type":53,"value":54,"context":55},"cve","CVE-2026-44289","DoS through unbounded protobuf recursion",{"type":53,"value":57,"context":58},"CVE-2026-44290","Process-wide DoS when loading schemas with unsafe option paths",{"type":53,"value":60,"context":61},"CVE-2026-44291","Code generation gadget after prototype pollution",{"type":53,"value":63,"context":64},"CVE-2026-44292","Prototype injection in generated message constructors",{"type":53,"value":66,"context":67},"CVE-2026-44294","DoS from crafted field names in generated code",{"type":53,"value":69,"context":70},"CVE-2026-44295","Code injection in pbjs static output from crafted schema names"]