Vulnerabilities > Memcached > Memcached > 1.6.0

DATE CVE VULNERABILITY TITLE RISK
2023-10-27 CVE-2023-46852 Classic Buffer Overflow vulnerability in Memcached
In Memcached before 1.6.22, a buffer overflow exists when processing multiget requests in proxy mode, if there are many spaces after the "get" substring.
network
low complexity
memcached CWE-120
7.5
7.5
2023-10-27 CVE-2023-46853 Off-by-one Error vulnerability in Memcached
In Memcached before 1.6.22, an off-by-one error exists when processing proxy requests in proxy mode, if \n is used instead of \r\n.
network
low complexity
memcached CWE-193
critical
 9.8
9.8
2023-08-22 CVE-2020-22570 Command Injection vulnerability in Memcached 1.6.0/1.6.1/1.6.2
Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service (daemon crash) via a crafted meta command.
network
low complexity
memcached CWE-77
7.5
7.5
2020-03-24 CVE-2020-10931 Classic Buffer Overflow vulnerability in Memcached 1.6.0/1.6.1
Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted binary protocol header to try_read_command_binary in memcached.c.
network
low complexity
memcached CWE-120
5.0
5.0