CVE-2026-5758
ADVISORY - githubSummary
JavaScript is vulnerable to prototype pollution in Mafintosh's protocol-buffers-schema Version 3.6.0, where an attacker may alter the application logic, bypass security checks, cause a DoS or achieve remote code execution.
Common Weakness Enumeration (CWE)
ADVISORY - nist
ADVISORY - github
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
ADVISORY - redhat
Improperly Controlled Modification of Dynamically-Determined Object Attributes
NIST
CREATED
UPDATED
ADVISORY IDCVE-2026-5758
EXPLOITABILITY SCORE
3.9
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
6.5mediumGitHub
CREATED
UPDATED
ADVISORY IDGHSA-j452-xhg8-qg39
EXPLOITABILITY SCORE
3.9
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
6.5mediumRed Hat
CREATED
UPDATED
ADVISORY IDCVE-2026-5758
EXPLOITABILITY SCORE
3.9
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)