Lucene search
GoogleOSV:GHSA-2W67-526P-GM73HistoryDec 06, 2017 - 4:41 p.m.
redis-store deserializes untrusted data
2017-12-0616:41:25
Google
osv.dev
5
EPSS
0.002
Percentile
61.0%
Redis-store prior to 1.4.0 allows unsafe objects to be loaded from redis
References
github.com/redis-store/redis-store
github.com/redis-store/redis-store/commit/ce13252c26fcc40ed4935c9abfeb0ee0761e5704
github.com/redis-store/redis-store/commit/e0c1398d54a9661c8c70267c3a925ba6b192142e
github.com/rubysec/ruby-advisory-db/blob/master/gems/redis-store/CVE-2017-1000248.yml
nvd.nist.gov/vuln/detail/CVE-2017-1000248
Related
cve
cve
CVE-2017-1000248
2017-11-17 04:29:00
debiancve
debiancve
CVE-2017-1000248
2017-11-17 04:29:00
prion
prion
Design/Logic Flaw
2017-11-17 04:29:00
osv
osv
CVE-2017-1000248
2017-11-17 04:29:00
ubuntucve
ubuntucve
CVE-2017-1000248
2017-11-17 00:00:00
veracode
veracode
Unsafe Deserialization
2017-11-20 01:16:16
cvelist
cvelist
CVE-2017-1000248
2017-11-17 04:00:00
rubygems
rubygems
Unsafe objects can be loaded from Redis
2017-11-15 21:00:00
nvd
nvd
CVE-2017-1000248
2017-11-17 04:29:00
github
github
redis-store deserializes untrusted data
2017-12-06 16:41:25