Description
Out-of-bounds Read vulnerability in Apache Thrift.

This issue affects Apache Thrift: before 0.23.0.

Users are recommended to upgrade to version 0.23.0, which fixes the issue.
Published: 2026-04-28
Score: 8.2 High
EPSS: < 1% Very Low
KEV: No
Impact: Information Disclosure
Action: Patch Upgrade
AI Analysis

Impact

The vulnerability is an out‑of‑bounds read in Apache Thrift's skip() function for Swift ranges. Reading beyond the allocated buffer can cause memory corruption, trigger a crash, and potentially expose data that should not be accessible.

Affected Systems

Apache Thrift, versions prior to 0.23.0, as released by the Apache Software Foundation.

Risk and Exploitability

The CVSS score of 8.2 indicates a high severity vulnerability, and the EPSS score of less than 1% suggests a low likelihood of exploitation. The flaw is not listed in the CISA KEV catalog. The likely attack vector is through a remote Thrift client sending a crafted message to a parser that invokes skip(). Successful exploitation could lead to a denial of service or leakage of sensitive memory content, but no active exploits have been reported.

Generated by OpenCVE AI on April 28, 2026 at 19:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Apache Thrift to version 0.23.0 or newer.
  • Restart all services that use Thrift after the upgrade to ensure the patched library is loaded.
  • Perform regression testing on all Thrift‑dependent interfaces to confirm stability and correct functionality after the upgrade.

Generated by OpenCVE AI on April 28, 2026 at 19:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 28 Apr 2026 18:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:apache:thrift:*:*:*:*:*:*:*:*

Tue, 28 Apr 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H'}

Tue, 28 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Apache
Apache thrift
Vendors & Products Apache
Apache thrift

Tue, 28 Apr 2026 10:30:00 +0000

Type Values Removed Values Added
References

Tue, 28 Apr 2026 10:00:00 +0000

Type Values Removed Values Added
Description Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.
Title Apache Thrift: Swift Range crash in skip()
Weaknesses CWE-125
References

Subscriptions

Apache Thrift
cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2026-04-28T14:37:36.500Z

Reserved: 2026-04-21T21:31:56.698Z

Link: CVE-2026-41604

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-04-28T10:16:03.230

Modified: 2026-04-28T18:40:10.280

Link: CVE-2026-41604

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T19:30:27Z

Weaknesses