CVE-2026-43869
published 2026-05-05CVE-2026-43869: Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to…
high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift.
This issue affects Apache Thrift: before 0.23.0.
Users are recommended to upgrade to version 0.23.0, which fixes the issue.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | thrift | < 0.23.0 | 0.23.0 |
| apache_software_foundation | apache_thrift | < 0.23.0 | 0.23.0 |
| cryostat | cryostat-storage-rhel9 | — | — |
| grafana | grafana | — | — |
| multicluster-globalhub | multicluster-globalhub-grafana-rhel8 | — | — |
| multicluster-globalhub | multicluster-globalhub-grafana-rhel9_1778867753 | — | — |
| openshift-service-mesh | istio-rhel8-operator | — | — |
| openshift4 | cnf-tests-rhel8 | — | — |
| openshift4 | oc-mirror-plugin-rhel9 | — | — |
| openshift4 | ztp-site-generate-rhel8 | — | — |
| redhat-user-workloads | cnf-tests-4-15 | — | — |
| redhat-user-workloads | grafana-acm-212 | — | — |
| redhat-user-workloads | grafana-acm-213 | — | — |
| redhat-user-workloads | ztp-site-generate-4-15 | — | — |
| redhat-user-workloads | ztp-site-generate-4-16 | — | — |
| rhacm2 | acm-grafana-rhel9 | — | — |
| rhaiis | vllm-cpu-rhel9 | — | — |
| rhaiis | vllm-tpu-rhel9 | — | — |
| rhoai | odh-model-registry-rhel9 | — | — |
| rhoai | odh-modelmesh-rhel8 | — | — |
| rhoai | odh-modelmesh-rhel9 | — | — |
| rhosdt | opentelemetry-collector-rhel9 | — | — |
| rhosdt | tempo-jaeger-query-rhel9 | — | — |
| rhosdt | tempo-query-rhel9 | — | — |
| rhosdt | tempo-rhel9 | — | — |