CVE-2021-24028 is a vulnerability in Facebook Thrift
Published on April 14, 2021
An invalid free in Thrift's table-based serialization can cause the application to crash or potentially result in code execution or other undesirable effects. This issue affects Facebook Thrift prior to v2021.02.22.00.
Weakness Type
Release of Invalid Pointer or Reference
The application attempts to return a memory resource to the system, but calls the wrong release function or calls the appropriate release function incorrectly.
Products Associated with CVE-2021-24028
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-24028 are published in Facebook Thrift:
Affected Versions
Facebook Thrift:- Version unspecified and below v2021.02.22.00 is affected.
- Version v2021.02.22.00 and below unspecified is unaffected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.