@0xd541ecb3/byte-babe (>=1.0.0 <=1.2.1), @514labs/aurora-mcp (>=0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939 <=0.0.64) +665 more potentially affected by CVE-2026-43870 via thrift (>=0.10.0 <=0.22.0)

thrift NPM version =0.10.0, =1.0.0, =0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939, =0.0.6, =0.0.0-dev, =1.0.0, =0.9.0, =0.0.0-9d773c, =0.0.0-5ad901, =0.0.1, =0.2.0, =0.2.0, =1.0.0-beta.1, =1.0.0-beta.6 and more Source cves: CVE-2026-43870 Source advisory: OSV:GHSA-526F-JXPJ-JMG2...

@0xd541ecb3/byte-babe (>=1.0.0 <=1.2.1), @514labs/aurora-mcp (>=0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939 <=0.0.64) +665 more potentially affected by CVE-2026-43870 via thrift (>=0.10.0 <=0.22.0)

thrift NPM version =0.10.0, =1.0.0, =0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939, =0.0.6, =0.0.0-dev, =1.0.0, =0.9.0, =0.0.0-9d773c, =0.0.0-5ad901, =0.0.1, =0.2.0, =0.2.0, =1.0.0-beta.1, =1.0.0-beta.6 and more Source cves: CVE-2026-43870 Source advisory: SNYK:JS-THRIFT-16431741...

CVE-2026-43870 Apache Thrift: Node.js web_server.js multi-vulnerability

Origin Validation Error, Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Improper Neutralization of CRLF Sequences in HTTP Headers 'HTTP Request/Response Splitting', Uncontrolled Resource Consumption vulnerability in Apache Thrift. This issue affects Apache Thrift:...

CVE-2026-43870

creationtimestamp| type| source ---|---|--- 2026-05-05 00:43:56+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3ml2xfsewtz22 2026-05-05 10:49:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml3zb4z75s2t...

EUVD-2025-43870

Malicious code in hendra-gepuk10-miaww npm...

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-864)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-864 advisory. In the Linux kernel, the following vulnerability has been resolved: xfs: fix log recovery buffer allocation for the legacy hsize fixup CVE-2024-39472 In the Linux kernel, the following...

Linux Distros Unpatched Vulnerability : CVE-2024-43870

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: perf: Fix event leak upon exit When a task is scheduled out, pending sigtrap deliveries are...

openSUSE Security Advisory (SUSE-SU-2024:3564-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2024:3551-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-43870

creationtimestamp| type| source ---|---|--- 2024-08-21 04:00:49+00:00| seen| https://t.me/cvedetector/3720...

CVE-2023-43870

creationtimestamp| type| source ---|---|--- 2024-01-12 19:36:50+00:00| seen| https://t.me/ctinow/167473 2024-06-10 20:17:20+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/10651...

CVE-2023-43870

When installing the Net2 software a root certificate is installed into the trusted store. A potential hacker could access the installer batch file or reverse engineer the source code to gain access to the root certificate password. Using the root certificate and password they could then create...

CVE-2022-43870

creationtimestamp| type| source ---|---|--- 2023-02-22 20:17:35+00:00| seen| https://t.me/cibsecurity/58691...

CVE-2022-43870

IBM Spectrum Virtualize 8.3–8.5 contains a vulnerability where SNMPv3 server credentials can be disclosed to an authenticated user via log files. Root cause: credentials logged in plaintext in system/audit logs accessible to authenticated users. Impact: confidentiality of SNMPv3 credentials could...

CVE-2022-43870 IBM Spectrum Virtualize information disclosure

IBM Spectrum Virtualize 8.3, 8.4, and 8.5 could disclose SNMPv3 server credentials to an authenticated user in log files. IBM X-Force ID: 239540...

CVE-2022-43870 IBM Spectrum Virtualize information disclosure

IBM Spectrum Virtualize 8.3, 8.4, and 8.5 could disclose SNMPv3 server credentials to an authenticated user in log files. IBM X-Force ID: 239540...

CVE-2021-43870

This CVE entry is rejected/not used and does not represent an active vulnerability entry.