Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| memcached | memcached | unaffected |
|
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Memcached | Memcached | 95% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 Debian DLA |
DLA-4601-1 | memcached security update |
 Ubuntu USN |
USN-8320-1 | Memcached vulnerabilities |
Thu, 21 May 2026 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Timing Side Channel in Memcached SASL Authentication | memcached: Memcached: Information disclosure via timing side channel |
| References |
| |
| Metrics |
threat_severity
|
threat_severity
|
Wed, 20 May 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 20 May 2026 07:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Timing Side Channel in Memcached SASL Authentication |
Wed, 20 May 2026 06:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass. | |
| First Time appeared |
Memcached
Memcached memcached |
|
| Weaknesses | CWE-208 | |
| CPEs | cpe:2.3:a:memcached:memcached:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Memcached
Memcached memcached |
|
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-05-20T12:21:02.894Z
Reserved: 2026-05-20T05:45:37.209Z
Link: CVE-2026-47784
Vulnrichment
Updated: 2026-05-20T12:20:59.429Z
NVD
Status : Analyzed
Published: 2026-05-20T07:16:15.733
Modified: 2026-06-17T10:54:40.383
Link: CVE-2026-47784
Redhat
OpenCVE Enrichment
Updated: 2026-05-20T09:30:15Z