CVE-2026-41988

Published April 23rd, 2026

View on NVD ↗

CVSS v3

3.2

LOW

CVSS v2

N/A

Affected

PROJECT

Description

uuid before 14.0.0 can make unexpected writes when external output buffers are used, and the UUID version is 3, 5, or 6. In particular, UUID version 4, which is very commonly used, is unaffected by this issue.

uuidjs/uuid

Generate RFC-compliant UUIDs in JavaScript

GitHub

15.3K