CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

366 matches found

Tenable Nessus•added 2025/10/08 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2025-46817

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to...

8.8CVSS7.4AI score0.10506EPSS

Exploits1References2

Tenable Nessus•added 2025/10/08 12:0 a.m.•0 views

Linux Distros Unpatched Vulnerability : CVE-2025-46819

7.1CVSS6.8AI score0.08765EPSS

Exploits0References2

Tenable Nessus•added 2025/10/08 12:0 a.m.•0 views

Linux Distros Unpatched Vulnerability : CVE-2025-46818

7.3CVSS6.8AI score0.03652EPSS

Exploits0References3

Tenable Nessus•added 2025/10/08 12:0 a.m.•2 views

Debian dsa-6020 : redis - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6020 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6020-1 [email protected]...

9.9CVSS8.7AI score0.11111EPSS

Exploits14References11

The Hacker News•added 2025/10/07 8:33 a.m.•9 views

13-Year-Old Redis Flaw Exposed: CVSS 10.0 Vulnerability Lets Attackers Run Code Remotely

Redis has disclosed details of a maximum-severity security flaw in its in-memory database software that could result in remote code execution under certain circumstances. The vulnerability, tracked as CVE-2025-49844 aka RediShell, has been assigned a CVSS score of 10.0. "An authenticated user may...

9.9CVSS8AI score0.11111EPSS

Exploits13

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2018-10717

Malware in sbrugna...

8.8CVSS8.6AI score0.00425EPSS

Exploits0References5

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: redis (UTSA-2025-338719)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-338719 advisory. Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to trigger a stack buffer overflow in...

8.8CVSS7.3AI score0.56313EPSS

Exploits1References3

SUSE CVE•added 2025/10/05 2:52 a.m.•1 views

SUSE CVE-2025-46817

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to cause an integer overflow and potentially lead to remote code execution The problem exists in all versions of Redis with Lua scripting...

8.8CVSS7.9AI score0.10506EPSS

Exploits1References18

SUSE CVE•added 2025/10/05 2:52 a.m.•2 views

SUSE CVE-2025-46818

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate different LUA objects and potentially run their own code in the context of another user. The problem exists in all versions o...

8CVSS6.7AI score0.03652EPSS

Exploits0References18

SUSE CVE•added 2025/10/05 2:52 a.m.•1 views

SUSE CVE-2025-46819

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua...

8.1CVSS6.4AI score0.08765EPSS

Exploits0References18

SUSE CVE•added 2025/10/05 2:52 a.m.•1 views

SUSE CVE-2025-49844

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem exists in all...

9.9CVSS7.7AI score0.11111EPSS

Exploits13References18

Tenable Nessus•added 2025/10/04 12:0 a.m.•2 views

FreeBSD : redis,valkey -- Lua Use-After-Free may lead to remote code execution (17e85cae-a115-11f0-9446-f02f7497ecda)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 17e85cae-a115-11f0-9446-f02f7497ecda advisory. redis reports: An authenticated user may use a specially crafted Lua script to manipulate the garbage...

9.9CVSS8.6AI score0.11111EPSS

Exploits13References3

Tenable Nessus•added 2025/10/04 12:0 a.m.•1 views

FreeBSD : redis,valkey -- Running Lua function as a different user (0258d37d-a118-11f0-9446-f02f7497ecda)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0258d37d-a118-11f0-9446-f02f7497ecda advisory. redis reports: An authenticated user may use a specially crafted Lua script to manipulate different LUA...

7.3CVSS8.1AI score0.03652EPSS

Exploits0References3

Tenable Nessus•added 2025/10/04 12:0 a.m.•1 views

FreeBSD : redis,valkey -- Lua library commands may lead to integer overflow and potential RCE (f6b8de04-a116-11f0-9446-f02f7497ecda)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f6b8de04-a116-11f0-9446-f02f7497ecda advisory. redis reports: An authenticated user may use a specially crafted Lua script to cause an integer overflo...

8.8CVSS8.1AI score0.10506EPSS

Exploits1References3