📦

mcrouter

Vendor: facebook

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.64% Exploit Prob.

Latest CVE CVE-2019-11937 Dec 04

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2019-11937

In Mcrouter prior to v0.41.0, a large struct input provided to the Carbon protocol reader could result in stack exhaustion and denial of service.

EPSS: 0.64%

Severity: HIGH

Dec 04, 2019

7.5 CVSS

CVE-2019-11923

RCE

In Mcrouter prior to v0.41.0, the deprecated ASCII parser would allocate a buffer to a user-specified length with no maximum length enforced, allowing for resource exhaustion or denial of service.

EPSS: 0.64%

Severity: HIGH

Dec 04, 2019

Displaying 2 of 2 Total Entries

Total 1 Sections