CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

140 matches found

OSV•added 2025/07/18 2:49 p.m.•3 views

OESA-2025-1850 redis security update

Redis is an advanced key-value store. It is often referred to as a dattructure server since keys can contain strings, hashes ,lists, sets anorted sets. Security Fixes: Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an...

7.8CVSS8AI score0.18438EPSS

Exploits4References3

Tenable Nessus•added 2025/07/12 12:0 a.m.•4 views

CBL Mariner 2.0 Security Update: redis / valkey (CVE-2025-32023)

The version of redis / valkey installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32023 advisory. - Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5,...

7.8CVSS7.4AI score0.18438EPSS

Exploits4References2

Microsoft CVE•added 2025/07/11 7:0 a.m.•1 views

Redis allows out of bounds writes in hyperloglog commands leading to RCE

...

7.8CVSS7AI score0.18438EPSS

Exploits4

Amazon•added 2025/07/10 12:0 a.m.•1 views

Important: redis

Issue Overview: Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on the heap, which could lead to remote code execution. CVE-2025-32023 Redis and Valkey contain a defect such that a well constructed hyperloglog can corrupt arbitrary memory on...

7.8CVSS8.2AI score0.18438EPSS

Exploits4

Amazon•added 2025/07/10 12:0 a.m.•2 views

Important: redis6

7.8CVSS8AI score0.18438EPSS

Exploits4

Amazon•added 2025/07/10 12:0 a.m.•1 views

Important: valkey

7.8CVSS8AI score0.18438EPSS

Exploits4

RedhatCVE•added 2025/07/09 4:3 p.m.•4 views

CVE-2025-32023

A flaw was found in Redis. This flaw allows an authenticated user to trigger an integer overflow by sending a specially crafted string, resulting in a stack or heap out-of-bounds write during hyperloglog operations. This issue potentially results in remote code execution. Mitigation Prevent users...

8.8CVSS9.5AI score0.18438EPSS

Exploits4References9

SUSE CVE•added 2025/07/07 11:31 p.m.•1 views

SUSE CVE-2025-32023

Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution. The...

8.8CVSS7.9AI score0.18438EPSS

Exploits4References14

NVD•added 2025/07/07 4:15 p.m.•6 views

CVE-2025-32023

7.8CVSS0.18438EPSS

Exploits4References7

OSV•added 2025/07/07 4:15 p.m.•1 views

ALPINE-CVE-2025-32023

7.8CVSS7.9AI score0.18438EPSS

Exploits4References1

OSV•added 2025/07/07 4:15 p.m.•1 views

AZL-64824 CVE-2025-32023 affecting package valkey for versions less than 8.0.4-1

7.8CVSS7AI score0.18438EPSS

Exploits4References1

OSV•added 2025/07/07 4:15 p.m.•1 views

DEBIAN-CVE-2025-32023

7.8CVSS5.7AI score0.18438EPSS

Exploits4References1

OSV•added 2025/07/07 4:15 p.m.•2 views

AZL-64806 CVE-2025-32023 affecting package redis for versions less than 6.2.18-3

7.8CVSS6.1AI score0.18438EPSS

Exploits4References1

OSV•added 2025/07/07 4:15 p.m.•0 views

UBUNTU-CVE-2025-32023

7.8CVSS6.1AI score0.18438EPSS

Exploits4References10

Vulnrichment•added 2025/07/07 3:22 p.m.•3 views

CVE-2025-32023 Redis allows out of bounds writes in hyperloglog commands leading to RCE

7CVSS7.7AI score0.18438EPSS

Exploits4References6

CVE•added 2025/07/07 3:22 p.m.•208 views

CVE-2025-32023

CVE-2025-32023 affects Redis with a stack/heap out-of-bounds write in hyperloglog operations, potentially enabling remote code execution. Affected versions range from 2.8 up to before 8.0.3, and specific 7.x/6.2 lines (8.0.3, 7.4.5, 7.2.10, 6.2.19) are fixed. The root cause is an out-of-bounds wr...

7.8CVSS7.1AI score0.18438EPSS

Exploits4References7Affected Software1