PT-2026-35700 · Apache · Apache Thrift

Hasnain Lakhani

Published

2026-04-28

Updated

2026-05-04

CVE-2026-41604

CVSS v3.1

8.2

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Name of the Vulnerable Software and Affected Versions Apache Thrift versions prior to 0.23.0

Description An out-of-bounds read issue exists in Apache Thrift, which occurs when the software reads data outside the intended boundary of a buffer.

Recommendations Upgrade to version 0.23.0.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BIT-THRIFT-2026-41604

CVE-2026-41604

OPENSUSE-SU-2026:10685-1

Affected Products

Apache Thrift

PT-2026-35700 · Apache · Apache Thrift

CVE-2026-41604

Weakness Enumeration

Related Identifiers

Affected Products

References · 21