3 matches found
@0xd541ecb3/byte-babe (>=1.0.0 <=1.2.1), @514labs/aurora-mcp (>=0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939 <=0.0.64) +674 more potentially affected by CVE-2026-43870 via thrift (>=0.10.0 <=0.22.0)
thrift NPM version =0.10.0, =1.0.0, =0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939, =0.0.6, =0.0.0-dev, =1.0.0, =0.9.0, =0.0.0-9d773c, =0.0.0-5ad901, =0.0.1, =0.2.0, =0.2.0, =1.0.0-beta.1, =1.0.0-beta.6 and more Source cves: CVE-2026-43870 Source advisory: OSV:GHSA-526F-JXPJ-JMG2...
@0xd541ecb3/byte-babe (>=1.0.0 <=1.2.1), @514labs/aurora-mcp (>=0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939 <=0.0.64) +674 more potentially affected by CVE-2026-43870 via thrift (>=0.10.0 <=0.22.0)
thrift NPM version =0.10.0, =1.0.0, =0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939, =0.0.6, =0.0.0-dev, =1.0.0, =0.9.0, =0.0.0-9d773c, =0.0.0-5ad901, =0.0.1, =0.2.0, =0.2.0, =1.0.0-beta.1, =1.0.0-beta.6 and more Source cves: CVE-2026-43870 Source advisory: SNYK:JS-THRIFT-16431741...
CVE-2026-43870 Apache Thrift: Node.js web_server.js multi-vulnerability
Origin Validation Error, Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Improper Neutralization of CRLF Sequences in HTTP Headers 'HTTP Request/Response Splitting', Uncontrolled Resource Consumption vulnerability in Apache Thrift. This issue affects Apache Thrift:...