CVE-2021-24028

EPSS 1.7%CWE-763

An invalid free in Thrift's table-based serialization can cause the application to crash or potentially result in code execution or other undesirable effects. This issue affects Facebook Thrift prior to v2021.02.22.00.

Affected products

Facebook · Facebook Thrift

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/facebook/fbthrift/commit/bfda1efa547dce11a38592820916db01b05b9339 https://www.facebook.com/security/advisories/cve-2021-24028