3322 matches found
EUVD-2019-6885
Malware in sbrugna...
EUVD-2017-3227
Malware in sbrugna...
EUVD-2021-1754
Malware in sbrugna...
EUVD-2020-7916
Malware in sbrugna...
EUVD-2020-17076
Malware in sbrugna...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: redis (UTSA-2025-338719)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-338719 advisory. Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to trigger a stack buffer overflow in...
(Pwn2Own) Redis Lua Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Redis. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of certain string values by the embedded Lua interpreter. The issue results from the...
Redis Multiple Vulnerabilities (Oct 2025, RediShell)
Redis is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:redis:redis"; if description...
SUSE CVE-2025-46817
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to cause an integer overflow and potentially lead to remote code execution The problem exists in all versions of Redis with Lua scripting...
SUSE CVE-2025-46818
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate different LUA objects and potentially run their own code in the context of another user. The problem exists in all versions o...
SUSE CVE-2025-46819
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua...
SUSE CVE-2025-49844
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem exists in all...
FreeBSD : redis,valkey -- Lua library commands may lead to integer overflow and potential RCE (f6b8de04-a116-11f0-9446-f02f7497ecda)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f6b8de04-a116-11f0-9446-f02f7497ecda advisory. redis reports: An authenticated user may use a specially crafted Lua script to cause an integer overflo...
FreeBSD : redis,valkey -- Lua Use-After-Free may lead to remote code execution (17e85cae-a115-11f0-9446-f02f7497ecda)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 17e85cae-a115-11f0-9446-f02f7497ecda advisory. redis reports: An authenticated user may use a specially crafted Lua script to manipulate the garbage...
FreeBSD : redis,valkey -- Out of bound read due to a bug in LUA (0af2f18e-a119-11f0-9446-f02f7497ecda)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0af2f18e-a119-11f0-9446-f02f7497ecda advisory. redis reports: An authenticated user may use a specially crafted LUA script to read out-of-bound data o...
FreeBSD : redis,valkey -- Running Lua function as a different user (0258d37d-a118-11f0-9446-f02f7497ecda)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0258d37d-a118-11f0-9446-f02f7497ecda advisory. redis reports: An authenticated user may use a specially crafted Lua script to manipulate different LUA...
ALPINE-CVE-2025-49844
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem exists in all...
CVE-2025-49844
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem exists in all...
AZL-68352 CVE-2025-49844 affecting package compat-lua 5.1.5-17
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem exists in all...
AZL-68426 CVE-2025-49844 affecting package valkey for versions less than 8.0.6-1
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem exists in all...