Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
memcached vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2019-11465
An issue exists in Couchbase Server 5.5.x up to and including 5.5.3 and 6.0.0. The Memcached "connections" stat block command emits a non-redacted username. The system information submitted to Couchbase as part of a bug report included the usernames for all users curren...
Couchbase Couchbase Server
Couchbase Couchbase Server 6.0.0
7.5
CVSSv3
CVE-2019-15026
memcached 1.5.16, when UNIX sockets are used, has a stack-based buffer over-read in conn_to_str in memcached.c.
Memcached Memcached 1.5.16
7.5
CVSSv3
CVE-2019-11596
In memcached prior to 1.5.14, a NULL pointer dereference was found in the "lru mode" and "lru temp_ttl" commands. This causes a denial of service when parsing crafted lru command messages in process_lru_command in memcached.c.
Memcached Memcached
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
8.1
CVSSv3
CVE-2018-6340
The Memcache::getextendedstats function can be used to trigger an out-of-bounds read. Exploiting this issue requires control over memcached server hostnames and/or ports. This affects all supported versions of HHVM (3.30 and 3.27.4 and below).
Facebook Hhvm
Facebook Hhvm 3.30
5.3
CVSSv3
CVE-2017-3635
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/C). Supported versions that are affected are 6.1.10 and previous versions. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to comp...
Oracle Mysql Connector\\/c
Oracle Mysql
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2017-9951
The try_read_command function in memcached.c in memcached prior to 1.4.39 allows remote malicious users to cause a denial of service (segmentation fault) via a request to add/set a key, which makes a comparison between signed and unsigned int and triggers a heap-based buffer over...
Memcached Memcached
4.9
CVSSv3
CVE-2016-5631
Unspecified vulnerability in Oracle MySQL 5.7.13 and previous versions allows remote administrators to affect availability via vectors related to Server: Memcached.
Oracle Mysql
5.9
CVSSv3
CVE-2015-7744
wolfSSL (formerly CyaSSL) prior to 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote malicious users to obtain priva...
Wolfssl Wolfssl
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mariadb Mariadb
NA
CVE-2016-0599
Unspecified vulnerability in Oracle MySQL 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.
Oracle Mysql 5.7.9
NA
CVE-2016-0601
Unspecified vulnerability in Oracle MySQL 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Partition.
Oracle Mysql 5.7.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »