Severity: Affected versions:
- Apache Thrift before 0.23.0 Description: Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue. Credit: 박시온 (L3G4CY Security Research) (finder) References: https://thrift.apache.org/ https://www.cve.org/CVERecord?id=CVE-2026-41636
