CVE-2025-48431 in Thriftالمعلومات

الملخص

بحسب MITRE • 28/04/2026

Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings.

This issue affects Apache Thrift: before 0.23.0.

Users are recommended to upgrade to version 0.23.0, which fixes the issue.

Description: Specially crafted requests can crash an c_glib-based Thrift server with a clean but fatal "free(): invalid pointer" error message.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

إفشاء

28/04/2026

الاعتدال

تمت الموافقة

إدخال

VDB-359907

CPE

جاهز

CWE

CWE-404 (مؤكد)

CVSS

4.3 (VulDB)

EPSS

0.00088

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-48431
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-48431
CVE Details	https://www.cvedetails.com/cve/CVE-2025-48431/

التالي ▸نظرة عامة ◂ السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!