4 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-41603
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to...
ai.chronon:aggregator_2.11 (>=0.0.1 <=thread_contention-0.0.23-dev3), ai.chronon:aggregator_2.12 (>=0.0.6 <=thread_contention-0.0.23-dev3) +3593 more potentially affected by CVE-2026-41603 via org.apache.thrift:libthrift (>=0.10.0 <=0.22.0)
org.apache.thrift:libthrift MAVEN version =0.10.0, =0.0.1, =0.0.6, =0.0.1, =chaining-0.0.46-dev, =0.0.6, =0.0.1, =0.0.62, =0.0.1, =0.0.25, =0.0.1, =0.0.86, =0.0.86, =0.0.8, =0.0.6, =3.10.0.5, =3.10.3.6 and more Source cves: CVE-2026-41603 Source advisory: SNYK:JAVA-ORGAPACHETHRIFT-16323114...
CVE-2026-41603
creationtimestamp| type| source ---|---|--- 2026-04-28 01:37:48+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mkjh5ntlpa2z 2026-04-28 15:05:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkkucgueag2i...
PT-2026-35685
Name of the Vulnerable Software and Affected Versions Apache Thrift versions prior to 0.23.0 Description Improper validation of certificates with host mismatch occurs in the Java TSSLTransportFactory hostname verification process. Recommendations Upgrade to version 0.23.0...