Filter
AND

Software

facebook hhvm
13
facebook thrift
8
facebook hermes
6
facebook fizz
3
facebook proxygen
3
facebook
2
facebook facebook for woocommerce
2
facebook hiphop virtual machine
2
facebook mcrouter
2
facebook zstandard
2
facebook folly
1
facebook instagram
1
facebook katran
1
facebook meta spark studio
1
facebook mvfst
1
facebook parlai
1
facebook react-native
1

pip/zstdBuffer Overflow

high
7.5
First published (updated )
CVE-2022-4899

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

high
7.5
Exploited
Zeroday
First published (updated )
CVE-2023-44487

Facebook HermesNull Pointer Dereference

high
7.5
First published (updated )
CVE-2023-24832

Facebook HermesUse After Free

high
7.5
First published (updated )
CVE-2023-24833

Facebook FizzThere is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be tr…

high
7.5
First published (updated )
CVE-2023-23759

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Facebook FizzAn improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infi…

high
7.5
First published (updated )
CVE-2019-3560

Facebook ZstandardRace Condition

high
8.1
First published (updated )
CVE-2019-11922

Facebook ParlaiDeserialization of Untrusted Data in parlai

high
8.8
First published (updated )
CVE-2021-39207

Facebook HipHop Virtual MachineInteger Overflow

high
7.5
First published (updated )
CVE-2014-6228

Facebook HipHop Virtual MachineCode Injection, CRLF Injection

high
7.5
First published (updated )
CVE-2014-2208

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Facebook HHVMInput Validation

high
7.5
First published (updated )
CVE-2018-6335

Facebook FollyBuffer Overflow

high
7.5
First published (updated )
CVE-2018-6337

Facebook HHVMThe Memcache::getextendedstats function can be used to trigger an out-of-bounds read. Exploiting thi…

high
8.1
First published (updated )
CVE-2018-6340

Facebook ProxygenInput Validation, Null Pointer Dereference

high
7.5
First published (updated )
CVE-2018-6343

Facebook Facebook For WoocommerceCSRF

high
8.8
First published (updated )
CVE-2019-15840

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Facebook Facebook For WoocommerceCSRF

high
8.8
First published (updated )
CVE-2019-15841

go/github.com/facebook/fbthriftGolang Facebook Thrift servers would not error upon receiving messages declaring containers of sizes…

high
7.5
First published (updated )
CVE-2019-11939

Facebook McrouterIn Mcrouter prior to v0.41.0, the deprecated ASCII parser would allocate a buffer to a user-specifie…

high
7.5
First published (updated )
CVE-2019-11923

Facebook McrouterIn Mcrouter prior to v0.41.0, a large struct input provided to the Carbon protocol reader could resu…

high
7.5
First published (updated )
CVE-2019-11937

Facebook ThriftJava Facebook Thrift servers would not error upon receiving messages declaring containers of sizes l…

high
7.5
First published (updated )
CVE-2019-11938

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Facebook FizzA peer could send empty handshake fragments containing only padding which would be kept in memory un…

high
7.8
First published (updated )
CVE-2019-11924

Facebook HHVMPath Traversal

high
8.1
First published (updated )
CVE-2019-3556

Facebook ThriftC++ Facebook Thrift servers would not error upon receiving messages declaring containers of sizes la…

high
7.5
First published (updated )
CVE-2019-3553

Facebook HHVMHHVM, when used with FastCGI, would bind by default to all available interfaces. This behavior could…

high
7.5
First published (updated )
CVE-2019-3569

Facebook ThriftLegacy C++ Facebook Thrift servers (using cpp instead of cpp2) would not error upon receiving messag…

high
7.5
First published (updated )
CVE-2019-3565

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Facebook ThriftPython Facebook Thrift servers would not error upon receiving messages with containers of fields of …

high
7.5
First published (updated )
CVE-2019-3558

Facebook ThriftJava Facebook Thrift servers would not error upon receiving messages with containers of fields of un…

high
7.5
First published (updated )
CVE-2019-3559

Facebook ThriftC++ Facebook Thrift servers (using cpp2) would not error upon receiving messages with containers of …

high
7.5
First published (updated )
CVE-2019-3552

Facebook ThriftInput Validation

high
7.5
First published (updated )
CVE-2019-3564

Facebook HHVMIn the crypt function, we attempt to null terminate a buffer using the size of the input salt withou…

high
7.5
First published (updated )
CVE-2020-1921

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203