CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в redis

Redis is an open-source, in-memory database that persists data on disk. In versions starting from 7.0.0 up to before 8.0.2, there was a stack-based buffer overflow vulnerability in redis-check-aof due to the use of memcpy with strlenfilepath when copying a user-supplied file path into a fixed-siz...

9.8CVSS6.6AI score0.00785EPSS

Exploits0References2

Tenable Nessus•added 2026/01/22 12:0 a.m.•6 views

Azure Linux 3.0 Security Update: valkey (CVE-2025-27151)

The version of valkey installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-27151 advisory. - Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before...

9.8CVSS6.3AI score0.00785EPSS

Exploits0References2

Tenable Nessus•added 2025/11/20 12:0 a.m.•3 views

TencentOS Server 4: redis (TSSA-2025:0425)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0425 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.8CVSS7.5AI score0.00785EPSS

Exploits0References2

Tenable Nessus•added 2025/10/07 12:0 a.m.•4 views

Unity Linux 20.1070e Security Update: redis (UTSA-2025-906166)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-906166 advisory. Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based buffer overflow exists in...

9.8CVSS7.5AI score0.00785EPSS

Exploits0References4

Tenable Nessus•added 2025/08/12 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-27151

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based buffer overflow exists in...

9.8CVSS7.4AI score0.00785EPSS

Exploits0References3

RedHat Linux•added 2025/07/28 8:2 p.m.•4 views

redis: Redis Stack Buffer Overflow

A flaw was found in Redis. Using memcpy with the strlen filepath when copying a user-supplied file path into a fixed-size stack buffer in redis-check-aof results in a stack-based buffer overflow. This flaw allows a local attacker to trigger the overflow by providing a specially crafted file path,...

9.8CVSS6.4AI score0.00785EPSS

Exploits0References8

RedHat Linux•added 2025/07/21 1:24 a.m.•7 views

redis: Redis Stack Buffer Overflow

9.8CVSS6.4AI score0.00785EPSS

Exploits0References8

BDU FSTEC•added 2025/07/17 12:0 a.m.•3 views

The vulnerability of the redis-check-aof command in the Redis database management system allows a hacker to execute arbitrary code.

The vulnerability of the redis-check-aof command in the Redis database management system is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code...

4.7CVSS6.5AI score0.00785EPSS

Exploits0References9Affected Software6

ATTACKERKB•added 2025/06/24 5:15 p.m.•3 views

CVE-2025-4378

Cleartext Transmission of Sensitive Information, Use of Hard-coded Credentials vulnerability in Ataturk University ATA-AOF Mobile Application allows Authentication Abuse, Authentication Bypass. This issue affects ATA-AOF Mobile Application: before 20.06.2025...

10CVSS5.4AI score0.00281EPSS

Exploits0References3

Cvelist•added 2025/06/24 4:27 p.m.•12 views

CVE-2025-4378 Hardcoded Credentials in Ataturk University's ATA-AOF Mobile Application

10CVSS0.00281EPSS

Exploits0References2

Vulnrichment•added 2025/06/24 4:27 p.m.•6 views

CVE-2025-4378 Hardcoded Credentials in Ataturk University's ATA-AOF Mobile Application

Cleartext Transmission of Sensitive Information, Use of Hard-coded Credentials vulnerability in Ataturk University ATA-AOF Mobile Application allows Authentication Abuse, Authentication Bypass.This issue affects ATA-AOF Mobile Application: before 20.06.2025...

10CVSS7.3AI score0.00281EPSS

Exploits0References1

Positive Technologies•added 2025/06/24 12:0 a.m.•4 views

PT-2025-26759

Name of the Vulnerable Software and Affected Versions: Ataturk University ATA-AOF Mobile Application versions prior to 20.06.2025 Description: The issue affects the Ataturk University ATA-AOF Mobile Application, allowing for authentication abuse and bypass due to cleartext transmission of sensiti...

10CVSS5.4AI score0.00281EPSS

Exploits0References7

OSV•added 2025/06/13 2:20 p.m.•2 views

OESA-2025-1630 redis security update

Redis is an advanced key-value store. It is often referred to as a dattructure server since keys can contain strings, hashes ,lists, sets anorted sets. Security Fixes: Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based...

9.8CVSS8AI score0.00785EPSS

Exploits0References3

SUSE CVE•added 2025/05/30 1:27 a.m.•1 views

SUSE CVE-2025-27151

Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based buffer overflow exists in redis-check-aof due to the use of memcpy with strlenfilepath when copying a user-supplied file path into a fixed-size stack buffer. This allo...

5.3CVSS7.9AI score0.00785EPSS

Exploits0References10

OSV•added 2025/05/29 9:15 a.m.•4 views

AZL-63750 CVE-2025-27151 affecting package valkey for versions less than 8.0.3-3

9.8CVSS6.7AI score0.00785EPSS

Exploits0References1

OSV•added 2025/05/29 9:15 a.m.•1 views

ALPINE-CVE-2025-27151

9.8CVSS7.8AI score0.00785EPSS

Exploits0References1

OSV•added 2025/05/29 9:15 a.m.•0 views

DEBIAN-CVE-2025-27151