Lucene search
K

1400 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.69 views

Amazon Linux 2023 : memcached, memcached-devel, memcached-selinux (ALAS2023-2026-1781)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1781 advisory. In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by...

8.1CVSS5.5AI score0.01312EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/04 12:9 p.m.10 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: memcached: memcached-1.6.42-0.1.hum1 aarch64, x8664 memcached-devel-1.6.42-0.1.hum1 aarch64, x8664 memcached-selinux-1.6.42-0.1.hum1 noarch memcached-1.6.42-0.1.hum1.src src...

8.1CVSS5.8AI score0.0055EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/04 2:23 a.m.12 views

SUSE CVE-2026-45686

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS5.9AI score0.00354EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/06/03 4:1 p.m.10 views

CVE-2026-45686

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS5.9AI score0.00354EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/03 12:0 a.m.12 views

Security update for memcached (important)

openSUSE security update: security update for memcached ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20884-1 Rating: important References: bsc1265873 bsc1265881 Cross-References: CVE-2026-47783 CVE-2026-47784 CVSS scores: CVE-2026-47783 SUSE : 8....

8.1CVSS5.8AI score0.01312EPSS
Exploits0References2
NVD
NVD
added 2026/06/02 4:16 p.m.18 views

CVE-2026-45686

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS0.00354EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/06/02 3:25 p.m.9 views

CVE-2026-45686

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS5.9AI score0.00354EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2026/06/02 3:25 p.m.11 views

EUVD-2026-33959

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS5.9AI score0.00354EPSS
Exploits1References2
CVE
CVE
added 2026/06/02 3:25 p.m.38 views

CVE-2026-45686

OpenTelemetry eBPF Instrumentation contains a remote integer overflow in OBI’s memcached text protocol parser (memcached_detect_transform.go) that can crash the OBI process and cause denial of service. Affected versions are 0.7.0 through before 0.9.0; the parser accepts large values for storage ...

7.5CVSS5.9AI score0.00354EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/02 3:25 p.m.11 views

CVE-2026-45686 OpenTelemetry eBPF Instrumentation: Memcached payload length overflow can crash OBI

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS5.9AI score0.00354EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/06/02 3:25 p.m.41 views

CVE-2026-45686 OpenTelemetry eBPF Instrumentation: Memcached payload length overflow can crash OBI

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcached text protocol parser can crash the OBI process and cause denial of service. When parsing...

7.5CVSS0.00354EPSS
Exploits1References2
OSV
OSV
added 2026/06/02 1:57 p.m.6 views

SUSE-SU-2026:22022-1 Security update for memcached

This update for memcached fixes the following issues - CVE-2026-47783: timing side-channel in SASL password database authentication username bsc1265873. - CVE-2026-47784: timing side-channel in SASL password database authentication password bsc1265881...

8.1CVSS5.4AI score0.01312EPSS
Exploits0References5
OSV
OSV
added 2026/06/02 1:56 p.m.5 views

OPENSUSE-SU-2026:20884-1 Security update for memcached

This update for memcached fixes the following issues - CVE-2026-47783: timing side-channel in SASL password database authentication username bsc1265873. - CVE-2026-47784: timing side-channel in SASL password database authentication password bsc1265881...

8.1CVSS5.8AI score0.01312EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

OpenTelemetry eBPF Instrumentation 输入验证错误漏洞

OpenTelemetry eBPF Instrumentation is an open-source eBPF-based lightweight telemetry data collection tool developed by OpenTelemetry. In versions 0.7.0 to 0.9.0 of OpenTelemetry eBPF Instrumentation, there was a vulnerability related to input validation errors. This vulnerability stemmed from a...

7.5CVSS5.5AI score0.00354EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/30 12:0 a.m.12 views

memcached-1.6.42-1.1 on GA media (moderate)

memcached-1.6.42-1.1 on GA media Announcement ID: openSUSE-SU-2026:10882-1 Rating: moderate Cross-References: CVE-2026-47783 CVE-2026-47784 CVSS scores: CVE-2026-47783 SUSE : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2026-47784 SUSE : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H...

8.1CVSS5.8AI score0.01312EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.12 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : Memcached vulnerabilities (USN-8320-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8320-1 advisory. It was discovered that Memcached's SASL password database authentication had a timing side channel when handling username...

8.1CVSS5.9AI score0.01312EPSS
Exploits0References3
OSV
OSV
added 2026/05/28 12:0 a.m.6 views

OPENSUSE-SU-2026:10882-1 memcached-1.6.42-1.1 on GA media

These are all security issues fixed in the memcached-1.6.42-1.1 package on the GA media of openSUSE Tumbleweed...

8.1CVSS5.8AI score0.01312EPSS
Exploits0References2
OSV
OSV
added 2026/05/27 12:47 p.m.13 views

USN-8320-1 memcached vulnerabilities

It was discovered that Memcached's SASL password database authentication had a timing side channel when handling username and password data. A remote attacker could possibly use this issue to obtain sensitive information...

8.1CVSS5.8AI score0.01312EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2026/05/27 12:47 p.m.19 views

USN-8320-1: Memcached vulnerabilities

It was discovered that Memcached's SASL password database authentication had a timing side channel when handling username and password data. A remote attacker could possibly use this issue to obtain sensitive information...

8.1CVSS5.8AI score0.01312EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/27 9:26 a.m.17 views

CVE-2026-47783

A flaw was found in memcached. A remote attacker can exploit a timing side channel during Simple Authentication and Security Layer SASL password database authentication. This vulnerability allows an attacker to observe subtle timing differences, which could be used to enumerate valid usernames...

8.1CVSS5.8AI score0.01312EPSS
Exploits0References6
Rows per page
Query Builder