Vulnerabilities > Facebook > Thrift > 2020.01.13.00

DATE CVE VULNERABILITY TITLE RISK
2021-04-14 CVE-2021-24028 Release of Invalid Pointer or Reference vulnerability in Facebook Thrift
An invalid free in Thrift's table-based serialization can cause the application to crash or potentially result in code execution or other undesirable effects.
network
low complexity
facebook CWE-763
critical
 9.8
9.8
2020-03-18 CVE-2019-11939 Allocation of Resources Without Limits or Throttling vulnerability in Facebook Thrift
Golang Facebook Thrift servers would not error upon receiving messages declaring containers of sizes larger than the payload.
network
low complexity
facebook CWE-770
7.5
7.5
2020-03-10 CVE-2019-3553 Allocation of Resources Without Limits or Throttling vulnerability in Facebook Thrift
C++ Facebook Thrift servers would not error upon receiving messages declaring containers of sizes larger than the payload.
network
low complexity
facebook CWE-770
7.5
7.5