Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2021-32672

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger'...

5.3CVSS6.3AI score0.01702EPSS
Exploits0References2
OSV
OSV
added 2023/08/31 12:15 p.m.1 views

BELL-CVE-2021-32672 CVE-2021-32672 does not affect BellSoft software

Bulletin has no description...

4.3CVSS5.8AI score0.01702EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-5221-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.1AI score0.31049EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/09/29 12:0 a.m.82 views

GLSA-202209-17 : Redis: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202209-17 Redis: Multiple Vulnerabilities - Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis can cause the heap-based Lua stack to be...

9.8CVSS8.1AI score0.31049EPSS
Exploits3References21
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/29 2:12 p.m.53 views

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring is vulnerable to various attacks due to its use of redis (CVE-2021-32675, CVE-2021-32626, CVE-2021-32672)

Summary Redis is used by several components in IBM Cloud Pak for Multicloud Management Monitoring as an in-memory shared cache database. It is not exposed outside the cluster. Vulnerability Details CVEID: CVE-2021-32672 DESCRIPTION: Redis could allow a remote authenticated attacker to obtain...

8.8CVSS1.3AI score0.1578EPSS
Exploits0Affected Software1
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.31 views

CVE-2021-32672 affecting package redis for versions less than 6.2.6-1

CVE-2021-32672 affecting package redis for versions less than 6.2.6-1. An upgraded version of the package is available that resolves this issue...

5.3CVSS6.6AI score0.01702EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/11/25 12:0 a.m.28 views

openSUSE: Security Advisory for redis (openSUSE-SU-2021:3772-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9CVSS7.4AI score0.1578EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/11/24 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2021:3772-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS6.8AI score0.1578EPSS
Exploits0References2
OSV
OSV
added 2021/11/23 2:48 p.m.14 views

OPENSUSE-SU-2021:3772-1 Security update for redis

This update for redis fixes the following issues: - CVE-2021-32627: Fixed integer to heap buffer overflows with streams bsc1191305. - CVE-2021-32628: Fixed integer to heap buffer overflows handling ziplist-encoded data types bsc1191305. - CVE-2021-32687: Fixed integer to heap buffer overflow with...

9CVSS6.8AI score0.1578EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2021/11/06 12:0 a.m.44 views

Debian: Security Advisory (DLA-2810-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS6.9AI score0.1578EPSS
Exploits0References3
Debian
Debian
added 2021/11/05 7:30 p.m.72 views

[SECURITY] [DSA 5001-1] redis security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5001-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 05, 2021 https://www.debian.org/security/faq -...

9CVSS8.1AI score0.31049EPSS
Exploits0
Debian
Debian
added 2021/11/05 11:7 a.m.42 views

[SECURITY] [DLA 2810-1] redis security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2810-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb November 05, 2021 https://wiki.debian.org/LTS -...

9CVSS7.8AI score0.1578EPSS
Exploits0
CBLMariner
CBLMariner
added 2021/10/22 4:51 a.m.28 views

CVE-2021-32672 affecting package redis 5.0.5-7

CVE-2021-32672 affecting package redis 5.0.5-7. An upgraded version of the package is available that resolves this issue...

5.3CVSS7AI score0.01702EPSS
Exploits0
Mageia
Mageia
added 2021/10/20 9:28 p.m.69 views

Updated redis packages fix security vulnerability

CVE-2021-32626: Specially crafted Lua scripts executing in Redis can cause the heap-based Lua stack to be overflowed, due to incomplete checks for this condition. This can result with heap corruption and potentially remote code execution. CVE-2021-32627: An integer overflow bug in Redis 5.0 or...

9CVSS8.3AI score0.1578EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/10/14 10:38 p.m.75 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.2.9 security, bug, and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.2.9 General Availability release images, which provide security updates, one or more container updates, and bug fixes. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring Syste...

9.8CVSS6.8AI score0.52838EPSS
Exploits13References11
RedhatCVE
RedhatCVE
added 2021/10/05 6:58 p.m.55 views

CVE-2021-32672

A flaw was found in redis. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger’s protocol parser to read data beyond the actual buffer, potentially leading to an information disclosure...

5.3CVSS2.7AI score0.01702EPSS
Exploits0References4
Circl
Circl
added 2021/10/04 10:24 p.m.5 views

CVE-2021-32672

creationtimestamp| type| source ---|---|--- 2021-10-04 22:24:21+00:00| seen| https://t.me/cibsecurity/29910...

5.3CVSS6AI score0.01702EPSS
Exploits0References1
OSV
OSV
added 2021/10/04 6:15 p.m.4 views

DEBIAN-CVE-2021-32672

Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger’s protocol parser to read data beyond the actual buffer. This issue affects all versions of Redis with Lua debugging support 3.2 or newer...

4.3CVSS6.2AI score0.01702EPSS
Exploits0References1
OSV
OSV
added 2021/10/04 6:15 p.m.8 views

AZL-6847 CVE-2021-32672 affecting package redis for versions less than 6.2.6-1

Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger’s protocol parser to read data beyond the actual buffer. This issue affects all versions of Redis with Lua debugging support 3.2 or newer...

4.3CVSS6.6AI score0.01702EPSS
Exploits0References1
CVE
CVE
added 2021/10/04 5:40 p.m.306 views

CVE-2021-32672

Redis contains CVE-2021-32672, a vulnerability in the Redis Lua Debugger where the protocol parser can read data beyond the actual buffer when handling malformed requests. This affects Redis builds that include Lua debugging support (3.2+). The issue is mitigated by upgrading to patched releases:...

5.3CVSS6AI score0.01702EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder