Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version…
This vulnerability allows an attacker to read data outside the boundaries of a buffer in Apache Thrift, potentially exposing sensitive information. It occurs when the application attempts to access memory that is not allocated to it. The vulnerability can be exploited to access sensitive data or crash the application.
Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.
Developers using Apache Thrift before version 0.23.0 are at medium risk of exposing sensitive information due to this out-of-bounds read vulnerability.
Monitor & Review
Low severity — keep this CVE on your radar and patch during routine maintenance.
What should I do?
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
Affected Products
2
References
apache / thrift
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
Exploitability
Impact