Denial of Service Vulnerability in Apache Thrift Client Libraries

Denial of Service Vulnerability in Apache Thrift Client Libraries

CVE-2015-3254 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

The client libraries in Apache Thrift before 0.9.3 might allow remote authenticated users to cause a denial of service (infinite recursion) via vectors involving the skip function.

Learn more about our Cis Benchmark Audit For Apache Http Server.