Apache

Thrift

18 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.3

CVE-2026-43870

  • EPSS 0.03%
  • Veröffentlicht 05.05.2026 09:16:04
  • Zuletzt bearbeitet 06.05.2026 18:05:04

Origin Validation Error, Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting'), Uncontrolled Resource Consumption vulnerability in...

5.3

CVE-2026-43868

  • EPSS 0.25%
  • Veröffentlicht 05.05.2026 09:16:04
  • Zuletzt bearbeitet 06.05.2026 18:05:16

Memory Allocation with Excessive Size Value vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

7.3

CVE-2026-43869

  • EPSS 0.04%
  • Veröffentlicht 05.05.2026 07:25:48
  • Zuletzt bearbeitet 06.05.2026 18:05:26

Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

7.5

CVE-2026-41636

  • EPSS 0.23%
  • Veröffentlicht 28.04.2026 09:22:14
  • Zuletzt bearbeitet 28.04.2026 18:38:39

Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

6.5

CVE-2026-41607

  • EPSS 0.17%
  • Veröffentlicht 28.04.2026 09:21:48
  • Zuletzt bearbeitet 28.04.2026 18:39:19

Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

5.3

CVE-2026-41606

  • EPSS 0.18%
  • Veröffentlicht 28.04.2026 09:21:12
  • Zuletzt bearbeitet 28.04.2026 18:39:41

Uncontrolled Recursion vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

7.3

CVE-2026-41605

  • EPSS 0.08%
  • Veröffentlicht 28.04.2026 09:20:44
  • Zuletzt bearbeitet 28.04.2026 18:39:57

Integer Overflow or Wraparound vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

8.2

CVE-2026-41604

  • EPSS 0.22%
  • Veröffentlicht 28.04.2026 09:20:13
  • Zuletzt bearbeitet 28.04.2026 18:40:10

Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

7.4

CVE-2026-41603

  • EPSS 0.06%
  • Veröffentlicht 28.04.2026 09:19:40
  • Zuletzt bearbeitet 28.04.2026 18:42:10

Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

7.5

CVE-2026-41602

  • EPSS 0.18%
  • Veröffentlicht 28.04.2026 09:19:06
  • Zuletzt bearbeitet 28.04.2026 18:40:25

Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.