CVE-2021-24028

Published April 14th, 2021

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

An invalid free in Thrift's table-based serialization can cause the application to crash or potentially result in code execution or other undesirable effects. This issue affects Facebook Thrift prior to v2021.02.22.00.

facebook/fbthrift

Facebook's branch of Apache Thrift, including a new C++ server.

GitHub

2.69K