{"id":"ECHO-1995-ff5e-ce0c","modified":"2026-05-11T00:32:57.176846Z","published":"2026-01-24T15:30:37.362177Z","upstream":["CVE-2026-0994","GHSA-7gcm-g887-7qv7"],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-0994"}],"affected":[{"package":{"name":"protobuf","ecosystem":"Echo","purl":"pkg:deb/echo/protobuf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.21.12-11+e2"}]}],"database_specific":{"source":"https://advisory.echohq.com/osv/ECHO-1995-ff5e-ce0c.json"}},{"package":{"name":"protobuf","ecosystem":"Echo:PyPi","purl":"pkg:pypi/protobuf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.29.4+echo.1"}]}],"database_specific":{"source":"https://advisory.echohq.com/osv/ECHO-1995-ff5e-ce0c.json"}}],"schema_version":"1.7.5"}