pkg:npm/thrift

2 total CVEsHIGH2

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-41636Apache Thrift Node.js bindings vulnerable to Uncontrolled Recursion
    from 0, < 0.23.0
  • HIGH7.3CVE-2026-43870Apache Thrift vulnerable to Path Traversal, HTTP Request/Response Splitting, Uncontrolled Resource Consumption
    from 0, <= 0.22.0
npm/thrift — 2 CVEs · VulnScope