Lucene search

K

[email protected]NVD:CVE-2018-1000115

HistoryMar 05, 2018 - 2:29 p.m.

CVE-2018-1000115

2018-03-0514:29:00

CWE-400

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.964 High

EPSS

Percentile

99.6%

Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources). This attack appear to be exploitable via network connectivity to port 11211 UDP. This vulnerability appears to have been fixed in 1.5.6 due to the disabling of the UDP protocol by default.

Affected configurations

NVD

Node

memcachedmemcachedMatch1.5.5

Node

canonicalubuntu_linuxMatch14.04lts

OR

canonicalubuntu_linuxMatch16.04lts

OR

canonicalubuntu_linuxMatch17.10

Node

debiandebian_linuxMatch8.0

OR

debiandebian_linuxMatch9.0

Node

redhatopenstackMatch8

OR

redhatopenstackMatch9

OR

redhatopenstackMatch10

OR

redhatopenstackMatch11

OR

redhatopenstackMatch12

References

access.redhat.com/errata/RHBA-2018:2140

access.redhat.com/errata/RHSA-2018:1593

access.redhat.com/errata/RHSA-2018:1627

access.redhat.com/errata/RHSA-2018:2331

access.redhat.com/errata/RHSA-2018:2857

blogs.akamai.com/2018/03/memcached-fueled-13-tbps-attacks.html

github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974

github.com/memcached/memcached/issues/348

github.com/memcached/memcached/wiki/ReleaseNotes156

twitter.com/dormando/status/968579781729009664

usn.ubuntu.com/3588-1/

www.debian.org/security/2018/dsa-4218

www.exploit-db.com/exploits/44264/

www.exploit-db.com/exploits/44265/

www.synology.com/support/security/Synology_SA_18_07

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.964 High

EPSS

Percentile

99.6%

Related for NVD:CVE-2018-1000115

veracode1 nessus19 openvas12 amazon2 redhat4 checkpoint_advisories1 altlinux1 alpinelinux1 redhatcve1 cve1 rapid7blog1 thn1 ubuntucve1 debiancve1 osv2 prion1 f51 mageia1 fedora2 cvelist1 ubuntu1 debian2