Vulnerabilities
Vulnerable Software
Memcached:  Security Vulnerabilities
In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass.
CVSS Score
8.1
EPSS Score
0.005
Published
2026-05-20
In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by sasl_server_userdb_checkpass.
CVSS Score
8.1
EPSS Score
0.013
Published
2026-05-20
In Memcached before 1.6.22, a buffer overflow exists when processing multiget requests in proxy mode, if there are many spaces after the "get" substring.
CVSS Score
7.5
EPSS Score
0.008
Published
2023-10-27
In Memcached before 1.6.22, an off-by-one error exists when processing proxy requests in proxy mode, if \n is used instead of \r\n.
CVSS Score
9.8
EPSS Score
0.008
Published
2023-10-27
memcached 1.6.7 allows a Denial of Service via multi-packet uploads in UDP.
CVSS Score
7.5
EPSS Score
0.009
Published
2023-08-22
Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service (daemon crash) via a crafted meta command.
CVSS Score
7.5
EPSS Score
0.01
Published
2023-08-22
Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file.
CVSS Score
5.5
EPSS Score
0.004
Published
2023-02-03
Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted binary protocol header to try_read_command_binary in memcached.c.
CVSS Score
7.5
EPSS Score
0.281
Published
2020-03-24
memcached 1.5.16, when UNIX sockets are used, has a stack-based buffer over-read in conn_to_str in memcached.c.
CVSS Score
7.5
EPSS Score
0.026
Published
2019-08-30
In memcached before 1.5.14, a NULL pointer dereference was found in the "lru mode" and "lru temp_ttl" commands. This causes a denial of service when parsing crafted lru command messages in process_lru_command in memcached.c.
CVSS Score
7.5
EPSS Score
0.03
Published
2019-04-29


Contact Us

Shodan ® - All rights reserved