PT-2026-36991 · Apache · Apache Thrift

Jens Geyer

·

Published

2026-05-05

·

Updated

2026-05-07

·

CVE-2026-43868

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Name of the Vulnerable Software and Affected Versions Apache Thrift versions prior to 0.23.0
Description An issue exists involving memory allocation with an excessive size value.
Recommendations Upgrade to version 0.23.0.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-789

Related Identifiers

BIT-THRIFT-2026-43868
CVE-2026-43868
GHSA-2F9F-GQ7V-9H6M

Affected Products

Apache Thrift