Package impact
NPM / thrift
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41636 | high | 7.5 | 7.5 | 1mo ago | Apache Thrift Node.js bindings vulnerable to Uncontrolled Recursion | |||
| CVE-2026-43870 | high | 7.3 | 7.3 | 25d ago | Apache Thrift vulnerable to Path Traversal, HTTP Request/Response Splitting, Uncontrolled Resource Consumption |