CVE-2022-48571

Опубликовано: 22 авг. 2023

Источник: redhat

CVSS3: 5.3

EPSS Низкий

Описание

memcached 1.6.7 allows a Denial of Service via multi-packet uploads in UDP.

A buffer overflow flaw was found in memcached. This issue occurs via multi-packet uploads in UDP, leading to a denial of service.

Отчет

Red Hat Enterprise Linux 7, 8 & 9 are not vulnerable as the issue is already fixed in memcached 1.6.8 and memcached 1.6.9.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	memcached	Not affected
Red Hat Enterprise Linux 7	memcached	Not affected
Red Hat Enterprise Linux 8	memcached	Not affected
Red Hat Enterprise Linux 9	memcached	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=2235661memcached: Denial of Service via multi-packet uploads in UDP

EPSS

Процентиль: 19%

0.0006

Низкий

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2022-48571

CVSS3: 7.5

ubuntu

больше 2 лет назад

memcached 1.6.7 allows a Denial of Service via multi-packet uploads in UDP.

CVE-2022-48571

CVSS3: 7.5

nvd

больше 2 лет назад

memcached 1.6.7 allows a Denial of Service via multi-packet uploads in UDP.

CVE-2022-48571

CVSS3: 7.5

debian

больше 2 лет назад

memcached 1.6.7 allows a Denial of Service via multi-packet uploads in ...

GHSA-x6px-h85m-3m6v

CVSS3: 7.5

github

больше 2 лет назад

memcached 1.6.7 allows a Denial of Service via multi-packet uploads in UDP.

EPSS

Процентиль: 19%

0.0006

Низкий

5.3 Medium

CVSS3