CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

IBM Security Bulletins•added 2026/04/10 2:43 p.m.•2 views

Security Bulletin: Vulnerabilities in Jetty, Eclipse Jetty,Spring Cloud Netflix Zuul,Spring Framework,Spring Security,NPM package,glob-parent package,jQuery,Braces, go-redis,qs,LZ4,js-yaml might affect IBM Storage Defender Copy Data Management

Summary IBM Storage Defender Copy Data Management can be affected by vulnerabilities in Jetty, Eclipse Jetty, Spring Cloud Netflix Zuul , Spring Framework, Spring Security, NPM package, glob-parent package, jQuery, Braces, go-redis, qs, LZ4 and js-yaml. Vulnerabilities include , bypassing the...

8.1CVSS7.3AI score0.9026EPSS

Exploits3Affected Software1

OSV•added 2026/01/30 3:31 p.m.•1 views

CLEANSTART-2026-PO40318 go-redis is the official Redis client library for the Go programming language

Multiple security vulnerabilities affect the harbor-registry-fips package. go-redis is the official Redis client library for the Go programming language. See references for individual vulnerability details...

9.8CVSS5.5AI score0.00158EPSS

Exploits2References7

OSV•added 2026/01/30 3:31 p.m.•0 views

CLEANSTART-2026-RY09679 go-redis is the official Redis client library for the Go programming language

Security vulnerability affects the harbor-registry-fips package. go-redis is the official Redis client library for the Go programming language...

9.8CVSS5.5AI score0.00158EPSS

Exploits0References3

Tenable Nessus•added 2026/01/22 12:0 a.m.•0 views

Azure Linux 3.0 Security Update: keda (CVE-2025-29923)

The version of keda installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-29923 advisory. - go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7....

3.7CVSS6AI score0.00158EPSS

Exploits0References2

IBM Security Bulletins•added 2026/01/16 8:37 a.m.•6 views

Security Bulletin: Due to the use of go-redis, IBM watsonx.ai on Cloud Pak for Data is vulnerable to out of order response during time-outs

Summary IBM watsonx.ai on Cloud Pak for Data internally uses go-redis CVE-2025-29923 Vulnerability Details CVEID:CVE-2025-29923 DESCRIPTION: go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order...

3.7CVSS7AI score0.00158EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2025-7158

Malicious code in bioql PyPI...

3.7CVSS5.4AI score0.00158EPSS

Exploits0References5

Tenable Nessus•added 2025/08/19 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-29923

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when...

3.7CVSS6.5AI score0.00158EPSS

Exploits0References3

Microsoft CVE•added 2025/04/01 7:0 a.m.•1 views

go-redis allows potential out of order responses when `CLIENT SETINFO` times out during connection establishment

...

3.7CVSS5.9AI score0.00158EPSS

Exploits0

Tenable Nessus•added 2025/04/01 12:0 a.m.•8 views

FreeBSD : gitea -- Multiple vulnerabilities (300f86de-0e4d-11f0-ae40-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 300f86de-0e4d-11f0-ae40-b42e991fc52e advisory. [email protected] reports: Matching of hosts against proxy patterns can improperly treat an...

7.5CVSS7.4AI score0.00158EPSS

Exploits2References7

SUSE CVE•added 2025/03/29 3:3 a.m.•1 views

SUSE CVE-2025-29923

go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when CLIENT SETINFO times out during connection establishment. This can happen when the client is configured to transmit its identity, there...

3.7CVSS7.2AI score0.00158EPSS

Exploits0References9

Veracode•added 2025/03/28 4:40 a.m.•103 views

Unexpected Status Code Or Return Value

go-redis is vulnerable to Unexpected Status Code or Return Value. The vulnerability is due to improper request handling due to timeouts in the CLIENT SETINFO command during connection establishment, leading to incorrect command responses and potential data inconsistency...

3.7CVSS7.3AI score0.00158EPSS

Exploits0References4Affected Software1

OSV•added 2025/03/20 6:49 p.m.•1 views

GHSA-92CP-5422-2MW7 go-redis allows potential out of order responses when `CLIENT SETINFO` times out during connection establishment

Impact The issue only occurs when the CLIENT SETINFO command times out during connection establishment. The following circumstances can cause such a timeout: 1. The client is configured to transmit its identity. This can be disabled via the DisableIndentity flag. 2. There are network connectivity...

3.7CVSS5.9AI score0.00158EPSS

Exploits0References5