CVE-2016-5397 is a vulnerability in Apache Thrift
Published on February 12, 2018

The Apache Thrift Go client library exposed the potential during code generation for command injection due to using an external formatting tool. Affected Apache Thrift 0.9.3 and older, Fixed in Apache Thrift 0.10.0.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2016-5397

Want to know whenever a new CVE is published for Apache Thrift? stack.watch will email you.

Apache Thrift

Affected Versions

Apache Software Foundation Apache Thrift Version versions prior to 0.10.0 is affected by CVE-2016-5397

Exploit Probability

EPSS

22.57%

Percentile

95.73%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2016-5397 is a vulnerability in Apache ThriftPublished on February 12, 2018

Products Associated with CVE-2016-5397

Affected Versions

Exploit Probability

CVE-2016-5397 is a vulnerability in Apache Thrift
Published on February 12, 2018