CVE-2016-8705
CRITICAL9.8EPSS 12.6%Published: 1/6/2017Modified: 4/28/2026
Description
Multiple integer overflows in process_bin_update function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.
Affected packages (2)
- Alpine/memcachedfrom 0, < 1.4.33-r0
- Debian/memcachedfrom 0, < 1.4.33-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |