Sarthak Munshi

2 exploits Active since May 2026
CVE-2026-47783 WRITEUP HIGH WRITEUP
memcached < 1.6.42 - Observable Timing Discrepancy in SASL Username Validation
In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by sasl_server_userdb_checkpass.
CVSS 8.1
CVE-2026-47784 WRITEUP HIGH WRITEUP
memcached < 1.6.42 - Observable Timing Discrepancy in SASL Password Authentication
In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass.
CVSS 8.1