VulnerableCode Package Details - pkg:maven/com.google.protobuf/protobuf-javalite@3.0.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/com.google.protobuf/protobuf-javalite@3.0.0

purl	pkg:maven/com.google.protobuf/protobuf-javalite@3.0.0
Tags	Ghost

Next non-vulnerable version	3.25.5
Latest non-vulnerable version	4.28.2
Risk	4.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-f7bp-rkuk-9qfn Aliases: CVE-2022-3510 GHSA-4gg5-vx3j-xwc7	A vulnerability has been discovered in protobuf-java which could result in denial of service.	3.16.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 3.19.6 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 3.20.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 3.21.7 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-kkrb-cyzz-8qbn Aliases: CVE-2022-3509 GHSA-g5ww-5jh7-63cx	A vulnerability has been discovered in protobuf-java which could result in denial of service.	3.16.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 3.20.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 3.21.7 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-f7bp-rkuk-9qfn
Aliases:
CVE-2022-3510
GHSA-4gg5-vx3j-xwc7

A vulnerability has been discovered in protobuf-java which could result in denial of service.

3.16.3
Affected by 1 other vulnerability.

3.19.6
Affected by 1 other vulnerability.

3.20.3
Affected by 1 other vulnerability.

3.21.7
Affected by 1 other vulnerability.

VCID-kkrb-cyzz-8qbn
Aliases:
CVE-2022-3509
GHSA-g5ww-5jh7-63cx

A vulnerability has been discovered in protobuf-java which could result in denial of service.

3.16.3
Affected by 1 other vulnerability.

3.20.3
Affected by 1 other vulnerability.

3.21.7
Affected by 1 other vulnerability.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-03T21:28:30.988220+00:00	GitLab Importer	Affected by	VCID-f7bp-rkuk-9qfn	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.google.protobuf/protobuf-javalite/CVE-2022-3510.yml	38.1.0
2026-04-02T16:58:35.893824+00:00	GHSA Importer	Affected by	VCID-f7bp-rkuk-9qfn	https://github.com/advisories/GHSA-4gg5-vx3j-xwc7	38.1.0
2026-04-02T16:58:35.589759+00:00	GHSA Importer	Affected by	VCID-kkrb-cyzz-8qbn	https://github.com/advisories/GHSA-g5ww-5jh7-63cx	38.1.0