Lucene search
K

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:33 p.m.24 views

Security Bulletin: A security vulnerability has been identified in Redis shipped with IBM Cloud Schematics (CVE-2017-15047)

Summary A security vulnerability has been identified in Redis shipped with IBM Cloud Schematics CVE-2017-15047 Vulnerability Details Title Security Bulletin: A security vulnerability has been identified in Redis shipped with IBM Cloud Schematics CVE-2017-15047 Summary Redis is used as a component...

9.8CVSS0.8AI score0.01784EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/04/24 12:0 a.m.684 views

Pivotal Software Redis 2.0.x < 3.2.12 / 4.0.x < 4.0.3 DoS

The version of Redis installed on the remote host is affected by a denial of service vulnerability and therefore requires a security update. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid109326; scriptversion"1.6...

9.8CVSS8.3AI score0.01784EPSS
Exploits0References2
OSV
OSV
added 2018/01/25 7:21 p.m.5 views

OPENSUSE-SU-2018:0225-1 Security update for redis

This update for redis to version 4.0.6 fixes security issues and bugs. The following vulnerabilities were fixed: - CVE-2017-15047: Buffer overflows occurring reading redis.conf bsc1061967 The following bugs are fixed: - Several PSYNC2 bugs could cause data corruption...

9.8CVSS9.4AI score0.01784EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/10/10 12:0 a.m.62 views

Redis <= 4.0.2 Buffer Overflow Vulnerability

Redis is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:redis:redis"; ifdescription...

9.8CVSS9.6AI score0.01784EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/10/06 9:49 a.m.37 views

CVE-2017-15047

The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service out-of-bounds array index and application crash or possibly have unspecified other impact by leveraging "limited access to the machine."...

9.8CVSS6.6AI score0.01784EPSS
Exploits0References1
OSV
OSV
added 2017/10/06 4:29 a.m.4 views

UBUNTU-CVE-2017-15047

The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service out-of-bounds array index and application crash or possibly have unspecified other impact by leveraging "limited access to the machine."...

9.8CVSS7.3AI score0.01784EPSS
Exploits0References3
CVE
CVE
added 2017/10/06 4:0 a.m.86 views

CVE-2017-15047

CVE-2017-15047 affects Redis 4.0.2, where clusterLoadConfig in cluster.c can trigger an out-of-bounds array index, causing a denial-of-service crash and potentially other impact. Public sources consistently reference a fix in Redis 4.0.3+ (and related advisories note fixes in later Redis versions...

9.8CVSS8.8AI score0.01784EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder