← back
CVE-2024-45863

CVE-2024-45863

CVSS 5.3 MEDIUMEPSS 0.3%
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.3EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 Sep 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A null-dereference vulnerability involving parsing requests specifying invalid protocols can cause the application to crash or potentially result in other undesirable effects. This issue affects Facebook Thrift from v2024.09.09.00 until v2024.09.23.00.
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected products
Facebook · Facebook Thrift

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.facebook.com/security/advisories/cve-2024-45863