Vulnerabilities > Memcached

DATE CVE VULNERABILITY TITLE RISK
2017-07-17 CVE-2017-9951 Unspecified vulnerability in Memcached
The try_read_command function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service (segmentation fault) via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over-read.
network
low complexity
memcached
7.5
2017-01-06 CVE-2016-8706 Integer Overflow or Wraparound vulnerability in Memcached
An integer overflow in process_bin_sasl_auth function in Memcached, which is responsible for authentication commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
network
high complexity
memcached CWE-190
8.1
2017-01-06 CVE-2016-8705 Integer Overflow or Wraparound vulnerability in Memcached
Multiple integer overflows in process_bin_update function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
network
low complexity
memcached CWE-190
critical
9.8
2017-01-06 CVE-2016-8704 Integer Overflow or Wraparound vulnerability in Memcached
An integer overflow in the process_bin_append_prepend function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
network
low complexity
memcached CWE-190
critical
9.8