Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
memcached vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-11465
An issue exists in Couchbase Server 5.5.x up to and including 5.5.3 and 6.0.0. The Memcached "connections" stat block command emits a non-redacted username. The system information submitted to Couchbase as part of a bug report included the usernames for all users curren...
Couchbase Couchbase Server
Couchbase Couchbase Server 6.0.0
5
CVSSv2
CVE-2019-15026
memcached 1.5.16, when UNIX sockets are used, has a stack-based buffer over-read in conn_to_str in memcached.c.
Memcached Memcached 1.5.16
5
CVSSv2
CVE-2019-11596
In memcached prior to 1.5.14, a NULL pointer dereference was found in the "lru mode" and "lru temp_ttl" commands. This causes a denial of service when parsing crafted lru command messages in process_lru_command in memcached.c.
Memcached Memcached
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
6.8
CVSSv2
CVE-2018-6340
The Memcache::getextendedstats function can be used to trigger an out-of-bounds read. Exploiting this issue requires control over memcached server hostnames and/or ports. This affects all supported versions of HHVM (3.30 and 3.27.4 and below).
Facebook Hhvm
Facebook Hhvm 3.30
3.5
CVSSv2
CVE-2017-3635
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/C). Supported versions that are affected are 6.1.10 and previous versions. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to comp...
Oracle Mysql Connector\\/c
Oracle Mysql
Debian Debian Linux 8.0
5
CVSSv2
CVE-2017-9951
The try_read_command function in memcached.c in memcached prior to 1.4.39 allows remote malicious users to cause a denial of service (segmentation fault) via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over...
Memcached Memcached
4
CVSSv2
CVE-2016-5631
Unspecified vulnerability in Oracle MySQL 5.7.13 and previous versions allows remote administrators to affect availability via vectors related to Server: Memcached.
Oracle Mysql
2.6
CVSSv2
CVE-2015-7744
wolfSSL (formerly CyaSSL) prior to 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote malicious users to obtain priva...
Wolfssl Wolfssl
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mariadb Mariadb
4.3
CVSSv2
CVE-2016-0594
Unspecified vulnerability in Oracle MySQL 5.6.21 and previous versions allows remote authenticated users to affect availability via vectors related to DML.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Oracle Mysql
3.5
CVSSv2
CVE-2016-0599
Unspecified vulnerability in Oracle MySQL 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.
Oracle Mysql 5.7.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »