VulnerableCode Package Details - pkg:gem/google-protobuf@3.17

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:gem/google-protobuf@3.17

purl	pkg:gem/google-protobuf@3.17
Tags	Ghost

Next non-vulnerable version	3.25.5
Latest non-vulnerable version	4.28.2
Risk	3.4

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-bm8g-3tja-rbgg Aliases: CVE-2022-3171 GHSA-h4h5-3hr4-j3g2 GMS-2022-4942 GMS-2022-4943 GMS-2022-4944 GMS-2022-4945 GMS-2022-5022	A vulnerability has been discovered in protobuf-java which could result in denial of service.	3.19.6 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 3.20.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 3.21.7 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-bm8g-3tja-rbgg
Aliases:
CVE-2022-3171
GHSA-h4h5-3hr4-j3g2
GMS-2022-4942
GMS-2022-4943
GMS-2022-4944
GMS-2022-4945
GMS-2022-5022

A vulnerability has been discovered in protobuf-java which could result in denial of service.

3.19.6
Affected by 1 other vulnerability.

3.20.3
Affected by 1 other vulnerability.

3.21.7
Affected by 1 other vulnerability.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T15:18:15.628973+00:00	Ruby Importer	Affected by	VCID-bm8g-3tja-rbgg	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/google-protobuf/CVE-2022-3171.yml	38.0.0