Every CVE whose affected-product data names Facebook Folly, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-11934 — CVSS 9.8 (critical): Improper handling of close_notify alerts can result in an out-of-bounds read in AsyncSSLSocket. This issue affects folly prior to…
CVE-2021-24036 — CVSS 9.8 (critical): Passing an attacker controlled size when creating an IOBuf could cause integer overflow, leading to an out of bounds write on the heap with…
CVE-2018-6337 — CVSS 7.5 (high): folly::secureRandom will re-use a buffer between parent and child processes when fork() is called. That will result in multiple forked…