Vulnerabilities > Facebook > Folly

DATE CVE VULNERABILITY TITLE RISK
2021-07-23 CVE-2021-24036 Integer Overflow or Wraparound vulnerability in Facebook Hhvm
Passing an attacker controlled size when creating an IOBuf could cause integer overflow, leading to an out of bounds write on the heap with the possibility of remote code execution.
network
low complexity
facebook CWE-190
critical
9.8
2019-12-04 CVE-2019-11934 Out-of-bounds Read vulnerability in Facebook Folly
Improper handling of close_notify alerts can result in an out-of-bounds read in AsyncSSLSocket.
network
low complexity
facebook CWE-125
critical
9.8
2018-12-31 CVE-2018-6337 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Facebook Folly and Hhvm
folly::secureRandom will re-use a buffer between parent and child processes when fork() is called.
network
low complexity
facebook CWE-119
7.5