CVE-2024-45863

Summary

A null-dereference vulnerability involving parsing requests specifying invalid protocols can cause the application to crash or potentially result in other undesirable effects. This issue affects Facebook Thrift from v2024.09.09.00 until v2024.09.23.00.

Affected Software

VendorProductVersion RangeStatus
FacebookFacebook Thriftv2024.09.09.00 < v2024.09.23.00affected

Weaknesses

  • NULL Pointer Dereference (CWE-476)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References