VDB

CNVD-2021-11836

CNVD-2021-11836 PUBLISHED

Apache Thrift是一款可伸缩的跨语言服务开发框架。 Apache Thrift存在拒绝服务漏洞,允许恶意RPC客户端发送超短消息,分配超大内存分配,可使应用程序崩溃。目前没有详细漏洞细节提供。

Affected Products

VendorProductVersions
n/aApache ThriftApache Thrift 0.9.3 to 0.13.0

Timeline

  • Feb 12, 2018 CVE Published
  • Jun 28, 2021 PoC Published
  • Dec 11, 2021 PoC Published
  • Dec 13, 2021 PoC Published
  • Dec 18, 2021 PoC Published
  • Jun 7, 2022 PoC Published
  • Sep 16, 2022 PoC Published
  • Nov 21, 2023 PoC Published
  • Dec 8, 2023 PoC Published
  • Dec 11, 2023 PoC Published
  • Mar 1, 2024 PoC Published
  • Apr 5, 2024 PoC Published

References

…and 88 more

Open in Interactive Console →
$ Console Community · 100/wk Open console ›