97 matches found
CVE-2019-11938
Java Facebook Thrift servers would not error upon receiving messages declaring containers of sizes larger than the payload. As a result, malicious clients could send short messages which would result in a large memory allocation, potentially leading to denial of service. This issue affects Facebo...
EUVD-2019-13196
Malware in sbrugna...
EUVD-2019-3595
Malware in sbrugna...
EUVD-2019-13190
Malware in sbrugna...
EUVD-2019-13195
Malware in sbrugna...
EUVD-2019-13189
Malware in sbrugna...
EUVD-2019-13201
Malware in sbrugna...
EUVD-2021-10948
Malware in sbrugna...
EUVD-2022-5486
Malicious code in bioql PyPI...
EUVD-2022-1246
Malicious code in bioql PyPI...
A use-after-free vulnerability involving upgradeToRocket requests can cause the application to crash or potentially result in code execution or other undesirable effects. This issue affects Facebook Thrift prior to v2024.09.09.00.
...
Linux Distros Unpatched Vulnerability : CVE-2019-3564
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Go Facebook Thrift servers would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short...
Linux Distros Unpatched Vulnerability : CVE-2019-3559
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Java Facebook Thrift servers would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short...
Linux Distros Unpatched Vulnerability : CVE-2019-3565
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Legacy C++ Facebook Thrift servers using cpp instead of cpp2 would not error upon receiving messages with containers of fields of unknown type. As a result,...
Linux Distros Unpatched Vulnerability : CVE-2019-3558
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Python Facebook Thrift servers would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send shor...
Linux Distros Unpatched Vulnerability : CVE-2019-3552
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - C++ Facebook Thrift servers using cpp2 would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could...
CVE-2024-45773
A use-after-free vulnerability involving upgradeToRocket requests can cause the application to crash or potentially result in code execution or other undesirable effects. This issue affects Facebook Thrift prior to v2024.09.09.00...
CVE-2024-45863
A null-dereference vulnerability involving parsing requests specifying invalid protocols can cause the application to crash or potentially result in other undesirable effects. This issue affects Facebook Thrift from v2024.09.09.00 until v2024.09.23.00...
CVE-2021-24028
An invalid free in Thrift's table-based serialization can cause the application to crash or potentially result in code execution or other undesirable effects. This issue affects Facebook Thrift prior to v2021.02.22.00...
CVE-2019-3565
Legacy C++ Facebook Thrift servers using cpp instead of cpp2 would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service...