CVE-2018-1000115

Impact:
Moderate
Public Date:
2018-03-02
Bugzilla:
1551182: CVE-2018-1000115 memcached: UDP server support allows spoofed traffic amplification DoS
It was discovered that the memcached connections using UDP transport protocol can be abused for efficient traffic amplification distributed denial of service (DDoS) attacks. A remote attacker could send a malicious UDP request using a spoofed source IP address of a target system to memcached, causing it to send a significantly larger response to the target.

Find out more about CVE-2018-1000115 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat is aware of traffic amplification distributed denial of service (DDoS) attacks that take advantage of the insecurely configured memcached servers reachable from the public Internet. The default configuration of memcached as shipped in Red Hat products makes it possible to abuse them for these DDoS attacks if memcached is exposed to connections from the public Internet. Refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in the attack.

https://access.redhat.com/solutions/3369081

CVSS v3 metrics

CVSS3 Base Score 5.3
CVSS3 Base Metrics CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity Impact None
Availability Impact Low

Red Hat Security Errata

Platform Errata Release Date
Red Hat OpenStack Platform 10 (openstack-tripleo-heat-templates) RHSA-2018:1593 2018-05-17
Red Hat OpenStack Platform 11.0 (Ocata) (openstack-tripleo-heat-templates) RHSA-2018:1627 2018-05-18
OpenStack 8.0 Director for RHEL 7 (instack-undercloud) RHSA-2018:2857 2018-10-02
Red Hat OpenStack Platform 12.0 RHSA-2018:2331 2018-08-20
OpenStack 9.0 Director for RHEL 7 (instack-undercloud) RHBA-2018:2140 2018-07-05

Affected Packages State

Platform Package State
Red Hat OpenStack Platform 9.0 memcached Affected
Red Hat OpenStack Platform 8.0 (Liberty) memcached Affected
Red Hat OpenStack Platform 13.0 (Queens) memcached Affected
Red Hat OpenStack Platform 11.0 (Ocata) memcached Affected
Red Hat OpenStack Platform 10 memcached Affected
Red Hat Mobile Application Platform On-Premise 4 rhmap-memcached-docker Affected
Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7 memcached Will not fix
Red Hat Enterprise Linux 7 memcached Will not fix
Red Hat Enterprise Linux 6 memcached Will not fix

Mitigation

Please refer to the Red Hat Knowledgebase article 3369081 for instructions on how to properly secure memcached installations to prevent them from being used in an attack.

https://access.redhat.com/solutions/3369081

Last Modified
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.