CVE-2026-41988

CVE-2026-41988CVE-2026-41988

uuidjs / uuid

Description

uuid before 14.0.0 can make unexpected writes when external output buffers are used, and the UUID version is 3, 5, or 6. In particular, UUID version 4, which is very commonly used, is unaffected by this issue.

Scoring

CVSS 3.2 ()
VectorCVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
Last modified2026-07-08
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.