Browse all 3 CVE security advisories affecting Memcached. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Memcached serves as an in-memory key-value store for database query caching, session storage, and temporary data storage to reduce load on backend systems. Historically, it has been vulnerable to remote code execution through deserialization flaws, cross-site scripting via stored data injection, and privilege escalation through insecure default configurations. The system's open nature and widespread deployment have made it a target for attacks, particularly in large-scale DDoS amplification campaigns where its UDP interface was exploited to reflect and amplify traffic. Despite its simplicity, misconfigurations and lack of authentication continue to pose risks, evidenced by three current CVEs highlighting persistent security challenges in its implementation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2016-8704 | Memcached 数字错误漏洞 — Memcached | 9.8 | - | 2017-01-06 |
| CVE-2016-8705 | Memcached 数字错误漏洞 — Memcached | 9.8 | - | 2017-01-06 |
| CVE-2016-8706 | Memcached 数字错误漏洞 — Memcached | 9.8 | - | 2017-01-06 |
This page lists every published CVE security advisory associated with Memcached. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.