VDB
CVE-2013-7239
CVE-2013-7239
PUBLISHED
CVSS 4.800000190734863 MEDIUM
memcached before 1.4.17 allows remote attackers to bypass authentication by sending an invalid request with SASL credentials, then sending another request with incorrect SASL credentials.
EPSS 0.30% · 53.6th percentile
Risk Scores
CVSS 2.0
4.800000190734863
EPSS Score
0.30%
53.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| memcached | memcached | 1.4.7, 0, 1.4.0 |
Exploit Intelligence
- 64559 (circl)
- https://code.google.com/p/memcached/wiki/ReleaseNotes1417 (circl)
- [oss-security] 20131230 Re: CVE Request: SASL authentication allows wrong credentials to access memcache (circl)
- USN-2080-1 (circl)
- DSA-2832 (circl)
- 56183 (circl)
Timeline
- Jan 13, 2014 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- 64559 vdb
- https://code.google.com/p/memcached/wiki/ReleaseNotes1417 url
- [oss-security] 20131230 Re: CVE Request: SASL authentication allows wrong credentials to access memcache mailing-list
- USN-2080-1 vendor-advisory
- DSA-2832 vendor-advisory
- 56183 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2013-7239 advisory