What is CVE-2018-1000115?

CVE-2018-1000115 is a vulnerability in N/a. Published 2018-03-05.

Is CVE-2018-1000115 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2018-1000115

Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic am…

EPSS: 0.868 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

RHBA-2018:2140 (x_refsource_REDHAT, vendor-advisory)
RHSA-2018:1593 (x_refsource_REDHAT, vendor-advisory)
USN-3588-1 (x_refsource_UBUNTU, vendor-advisory)
github.com/memcached/memcached/wiki/ReleaseNotes156 (x_refsource_MISC)
44264 (exploit, x_refsource_EXPLOIT-DB)
twitter.com/dormando/status/968579781729009664 (x_refsource_MISC)
44265 (exploit, x_refsource_EXPLOIT-DB)
github.com/memcached/memcached/commit/dbb7a8af90054bf4ef51f5814ef7ceb17d83d974 (x_refsource_MISC)
RHSA-2018:2857 (x_refsource_REDHAT, vendor-advisory)
RHSA-2018:1627 (x_refsource_REDHAT, vendor-advisory)

Frequently asked questions

What is CVE-2018-1000115?: CVE-2018-1000115 is a vulnerability in N/a. Published 2018-03-05.
Is CVE-2018-1000115 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.