@forgerock/openam-agent-cache-memcached (=2.0.0), @mapbox/tilelive-memcached (=1.0.1) +74 more potentially affected by CVE-2018-3767 via memjs (>=0.10.2 <=0.9.1)

memjs NPM version =0.10.2, =1.0.0, =0.0.0, =0.12.1, =0.0.1, =0.8.0, =0.1.0, =1.1.0, =1.1.1 and more Source cves: CVE-2018-3767 Source advisory: OSV:GHSA-CX8M-8XMX-Q8V3...

memjs denial of service vulnerability

memjs is a Node.js client library for using Memcache. A security vulnerability exists in memjs 1.1.0 and earlier versions, which stems from the program failing to properly perform filtering. An attacker can exploit this vulnerability to cause a denial of service and disclose uninitialized memory...

CVE-2018-3767

memjs versions = 1.1.0 allocates and stores buffers on typed input, resulting in DoS and uninitialized memory usage...