Package impact
Go / github.com/apache/thrift
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41602 | high | 7.5 | 7.5 | 1mo ago | Apache Thrift TFramedTransport Go language implementation has an Integer Overflow or Wraparound vulnerability | |||
| CVE-2016-5397 | unknown | — | — | 4y ago | The Apache Thrift Go client library exposed the potential during code generation for command injection due to using an external formatting tool. Affected Apache Thrift 0.9.3 and older, Fixed in Apach… | |||
| CVE-2019-0210 | unknown | — | — | 5y ago | In Apache Thrift 0.9.3 to 0.12.0, a server implemented in Go using TJSONProtocol or TSimpleJSONProtocol may panic when feed with invalid input data. |