CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в redis

Redis is an in-memory database that persists data on disk.Authenticated users can use string matching commands such as SCAN or KEYS with specially crafted patterns to trigger a denial-of-service attack on Redis, causing it to hang and consume 100% of CPU resources. This issue has been fixed in...

5.5CVSS6AI score0.60647EPSS

Exploits0References2

vulnersOsv•added 2025/10/16 3:30 p.m.•5 views

at.aimon.ops:aimon-ops-api (>=0.0.1 <=0.0.2), cc.allio.uno:uno-starter-websocket (>=1.1.9 <=1.2.1) +704 more potentially affected by CVE-2025-41254 via org.springframework:spring-websocket (>=6.2.0 <=6.2.11)

org.springframework:spring-websocket MAVEN version =6.2.0, =0.0.1, =1.1.9, =1.1.9, =3.5.5.3, =3.4.0.0, =3.4.0.0, =3.5.5.3, =1.0.0, =4.11.3, =4.11.3, =4.11.3, =4.11.3, =4.11.3, =4.11.3, =4.11.5 and more Source cves: CVE-2025-41254 Source advisory: OSV:GHSA-7FCH-4F2F-JCGM...

4.3CVSS7.4AI score0.00062EPSS

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-1088

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.01EPSS

Exploits1References3

OSV•added 2024/08/22 7:42 p.m.•17 views

BIT-VALKEY-2023-25155 Integer Overflow in several Redis commands can lead to denial of service.

Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD commands can trigger an integer overflow, resulting in a runtime assertion and termination of the Redis server process. This problem affects all Redis...

6.5CVSS6.2AI score0.0504EPSS

Exploits0References6

OSV•added 2024/08/22 7:25 p.m.•20 views

BIT-KEYDB-2022-36021 Redis string pattern matching can be abused to achieve Denial of Service

Redis is an in-memory database that persists on disk. Authenticated users can use string matching commands like SCAN or KEYS with a specially crafted pattern to trigger a denial-of-service attack on Redis, causing it to hang and consume 100% CPU time. The problem is fixed in Redis versions 6.0.18...

5.5CVSS6AI score0.60647EPSS

Exploits0References3

OSV•added 2024/08/22 7:24 p.m.•16 views

BIT-KEYDB-2023-25155 Integer Overflow in several Redis commands can lead to denial of service.

6.5CVSS6.2AI score0.0504EPSS

Exploits0References6

OSV•added 2024/03/06 11:4 a.m.•29 views

BIT-REDIS-2023-25155 Integer Overflow in several Redis commands can lead to denial of service.

6.5CVSS6.2AI score0.0504EPSS

Exploits0References6

Vulnrichment•added 2024/02/20 1:19 p.m.•14 views

CVE-2023-42791

A relative path traversal in Fortinet FortiManager version 7.4.0 and 7.2.0 through 7.2.3 and 7.0.0 through 7.0.8 and 6.4.0 through 6.4.12 and 6.2.0 through 6.2.11 allows attacker to execute unauthorized code or commands via crafted HTTP requests...

8.8CVSS7.5AI score0.11279EPSS

Exploits1References1

Positive Technologies•added 2023/11/15 12:0 a.m.•3 views

PT-2023-29737 · Qt Company · Qt

Name of the Vulnerable Software and Affected Versions: Qt versions prior to 6.2.11 Qt versions 6.3.x through 6.6.x before 6.6.1 Description: An issue was discovered in Qt when a QML image refers to an image whose content is not known yet, leading to an assumption that it is an SVG document. If th...

6.5CVSS6.8AI score0.0008EPSS

Exploits0References31

QT•added 2023/10/19 12:0 a.m.•22 views

Security advisory: Loading invalid QML image source impacts Qt

An issue when loading an invalid QML image source has been reported and has been assigned the CVE id CVE-2023-45872. When an invalid source is used to indicate an image to be loaded is specified then it will end up trying to load it as a SVG file which will trigger a crash in Qt SVG. This does no...

6.5CVSS8.6AI score0.0008EPSS

Exploits0

CBLMariner•added 2023/05/25 5:55 p.m.•16 views

CVE-2023-28856 affecting package redis 6.2.11-1

CVE-2023-28856 affecting package redis 6.2.11-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS7.4AI score0.00327EPSS

Exploits0

Tenable Nessus•added 2023/05/10 12:0 a.m.•35 views

SUSE SLES15 / openSUSE 15 Security Update : redis (SUSE-SU-2023:2122-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2122-1 advisory. - Redis is an in-memory database that persists on disk. Authenticated users can use string matching commands like SCA...

6.5CVSS6.8AI score0.60647EPSS

Exploits0References10

CBLMariner•added 2023/03/24 11:57 p.m.•28 views

CVE-2022-36021 affecting package redis for versions less than 6.2.11-1

CVE-2022-36021 affecting package redis for versions less than 6.2.11-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.3AI score0.60647EPSS

Exploits0

OpenVAS•added 2023/03/21 12:0 a.m.•26 views

Redis < 6.0.18, 6.2.x < 6.2.11, 7.0.x < 7.0.9 Multiple Vulnerabilities

Redis is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:redis:redis"; if description...

6.5CVSS6.6AI score0.60647EPSS

Exploits0References5

OSV•added 2023/03/02 4:15 a.m.•1 views

AZL-25354 CVE-2023-25155 affecting package redis for versions less than 6.2.11-1

6.5CVSS6.2AI score0.0504EPSS

Exploits0References1

OSV•added 2023/03/02 4:15 a.m.•1 views

DEBIAN-CVE-2023-25155

6.5CVSS5.3AI score0.0504EPSS

Exploits0References1

OSV•added 2023/03/02 4:15 a.m.•0 views

UBUNTU-CVE-2023-25155