Vulnerability Details CVE-2020-10931
Memcached 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted binary protocol header to try_read_command_binary in memcached.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.154
EPSS Ranking 94.3%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://github.com/memcached/memcached/commit/02c6a2b62ddcb6fa4569a591d3461a156a636305
- https://github.com/memcached/memcached/issues/629
- https://github.com/memcached/memcached/wiki/ReleaseNotes162
- https://github.com/memcached/memcached/commit/02c6a2b62ddcb6fa4569a591d3461a156a636305
- https://github.com/memcached/memcached/issues/629
- https://github.com/memcached/memcached/wiki/ReleaseNotes162