CVE-2015-3254
MEDIUMApache Thrift <0.9.3 - DoS
Title source: llmDescription
The client libraries in Apache Thrift before 0.9.3 might allow remote authenticated users to cause a denial of service (infinite recursion) via vectors involving the skip function.
References (6)
Scores
CVSS v3
6.5
EPSS
0.0180
EPSS Percentile
82.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (2)
apache/thrift
< 0.9.2
n/a/n/a
Published
Jun 16, 2017
Tracked Since
Feb 18, 2026