Lucene search
Redhat.comRH:CVE-2018-1000115HistoryMar 03, 2018 - 5:20 a.m.
CVE-2018-1000115
2018-03-0305:20:40
redhat.com
access.redhat.com
21
EPSS
0.964
Percentile
99.6%
It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target.
Mitigation
Please refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in an attack.
Related
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:21:25
checkpoint_advisories
checkpoint_advisories
Memcached Web-Servers Network Flood Denial of Service (CVE-2018-1000115)
2018-03-06 00:00:00
alpinelinux
alpinelinux
CVE-2018-1000115
2018-03-05 14:29:00
amazon
amazon
Medium: memcached
2018-03-07 21:14:00
Medium: memcached
2018-03-08 21:24:00
redhat
redhat
openvas
openvas
Mageia: Security Advisory (MGASA-2018-0165)
2022-01-28 00:00:00
Fedora Update for memcached FEDORA-2018-8ff86925c3
2018-05-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0955-1)
2021-04-19 00:00:00
nessus
nessus
RHEL 7 : Red Hat OpenStack Platform 8 director (RHSA-2018:2857)
2024-04-27 00:00:00
openSUSE Security Update : memcached (openSUSE-2018-373)
2018-04-18 00:00:00
Amazon Linux 2 : memcached (ALAS-2018-964)
2018-04-18 00:00:00
exploitdb
exploitdb
altlinux
altlinux
Security fix for the ALT Linux 8 package memcached version 1.5.6-alt1.M80P.1
2018-03-06 00:00:00
metasploit
metasploit
Memcached Stats Amplification Scanner
2018-02-28 04:24:17
rapid7blog
rapid7blog
NICER Protocol Deep Dive: Internet Exposure of memcached
2020-12-07 15:17:30
cve
cve
CVE-2018-1000115
2018-03-05 14:29:00
nvd
nvd
CVE-2018-1000115
2018-03-05 14:29:00
packetstorm
packetstorm
Memcached Stats Amplification Scanner
2024-08-31 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: memcached-1.5.7-1.fc27
2018-04-29 05:16:00
[SECURITY] Fedora 26 Update: memcached-1.4.39-2.fc26
2018-04-22 00:59:35
prion
prion
Design/Logic Flaw
2018-03-05 14:29:00
f5
f5
K63525027 : Memcached vulnerability CVE-2018-1000115
2018-03-20 00:00:00
thn
thn
'Kill Switch' to Mitigate Memcached DDoS Attacks — Flush 'Em All
2018-03-08 06:53:00
mageia
mageia
Updated memcached packages disable UDP by default
2018-03-14 19:21:20
debiancve
debiancve
CVE-2018-1000115
2018-03-05 14:29:00
osv
osv
CVE-2018-1000115
2018-03-05 14:29:00
memcached - security update
2018-06-06 00:00:00
memcached-1.6.9-2.3 on GA media
2024-06-15 00:00:00
ubuntucve
ubuntucve
CVE-2018-1000115
2018-03-05 00:00:00
cvelist
cvelist
CVE-2018-1000115
2018-03-05 14:00:00
ubuntu
ubuntu
Memcached vulnerabilities
2018-03-05 00:00:00
debian
debian
[SECURITY] [DSA 4218-1] memcached security update
2018-06-06 18:52:34
[SECURITY] [DSA 4218-1] memcached security update
2018-06-06 18:52:34