CRITICAL🇵🇱 Wersja polska

CVE-2023-46853

CVSS 9.8v3.1pub. 2023-10-27upd. 2024-11-21

In Memcached before 1.6.22, an off-by-one error exists when processing proxy requests in proxy mode, if \n is used instead of \r\n.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Memcached

    APP
    Memcached
    < 1.6.22
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2016-8704CRITICAL9.8ten sam produkt

An integer overflow in the process_bin_append_prepend function in Memcached, which is responsible for processi...

CVE-2016-8705CRITICAL9.8ten sam produkt

Multiple integer overflows in process_bin_update function in Memcached, which is responsible for processing mu...

CVE-2026-47783HIGH8.1ten sam produkt

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel ...

CVE-2026-47784HIGH8.1ten sam produkt

In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel ...

CVE-2023-46852HIGH7.5ten sam produkt

In Memcached before 1.6.22, a buffer overflow exists when processing multiget requests in proxy mode, if there...