Every CVE whose affected-product data names Facebook Mcrouter, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2019-11923 — CVSS 7.5 (high): In Mcrouter prior to v0.41.0, the deprecated ASCII parser would allocate a buffer to a user-specified length with no maximum length…
CVE-2019-11937 — CVSS 7.5 (high): In Mcrouter prior to v0.41.0, a large struct input provided to the Carbon protocol reader could result in stack exhaustion and denial of…