CVE-2016-9054 is a critical network-reachable memory corruption flaw in Aerospike Database Server 3.10.0.3. According to the NVD record and the CVE description, a specially crafted packet can trigger a stack-based buffer overflow in the querying path, with potential remote code execution. Because the issue can be triggered by simply connecting to the service port, defenders should treat exposed Aerospike [truncated]
CVE-2016-9052 is a critical, network-exploitable memory-corruption issue in Aerospike Database Server 3.10.0.3. According to NVD, a specially crafted packet can trigger a stack-based buffer overflow in the querying path, with remote code execution as the reported impact. The issue is associated with CWE-787 and carries a CVSS 3.1 vector of AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, indicating a high-risk exposu [truncated]
CVE-2016-9050 affects Aerospike Database Server 3.10.0.3. According to the NVD record, a specially crafted network packet can trigger an out-of-bounds read in client message parsing, which may disclose memory from the process and can also cause a denial of service. The issue is network reachable and does not require privileges or user interaction.
