Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

Ubuntu
Ubuntuadded 2026/04/13 1:18 p.m.5 views

USN-8169-1: Redis, Lua vulnerabilities

It was discovered that Redis incorrectly handled certain specially crafted Lua scripts. A remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue was only addressed in lua5.1 on Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. CVE-2025-49844 It was...

9.9CVSS7.1AI score0.56313EPSS
Exploits15
Tenable Nessus
Tenable Nessusadded 2026/01/13 12:0 a.m.1 views

MiracleLinux 9 : redis-6.2.20-1.el9_6 (AXSA:2025-11005:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11005:04 advisory. redis: Lua library commands may lead to integer overflow and potential RCE CVE-2025-46817 Redis: Redis: Authenticated users can execute LUA scripts...

9.9CVSS9.1AI score0.11111EPSS
Exploits14References5
Tenable Nessus
Tenable Nessusadded 2025/12/03 12:0 a.m.1 views

AlmaLinux 9 : valkey (ALSA-2025:21916)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:21916 advisory. redis: Lua library commands may lead to integer overflow and potential RCE CVE-2025-46817 Redis: Redis: Authenticated users can execute LUA scripts as a...

9.9CVSS9.2AI score0.11111EPSS
Exploits14References6
OSV
OSVadded 2025/11/29 9:4 a.m.4 views

RLSA-2025:20955 Important: redis:7 security update

Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, ...

8.8CVSS8.6AI score0.11111EPSS
Exploits14References5
OSV
OSVadded 2025/11/29 9:2 a.m.3 views

RLSA-2025:19238 Important: redis:6 security update

Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, ...

8.8CVSS8.6AI score0.11111EPSS
Exploits14References5
Tenable Nessus
Tenable Nessusadded 2025/11/25 12:0 a.m.1 views

RockyLinux 9 : valkey (RLSA-2025:21916)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:21916 advisory. redis: Lua library commands may lead to integer overflow and potential RCE CVE-2025-46817 Redis: Redis: Authenticated users can execute LUA scripts as a...

9.9CVSS9.2AI score0.11111EPSS
Exploits14References9
Tenable Nessus
Tenable Nessusadded 2025/11/25 12:0 a.m.2 views

RockyLinux 10 : valkey (RLSA-2025:21936)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:21936 advisory. redis: Lua library commands may lead to integer overflow and potential RCE CVE-2025-46817 Redis: Redis: Authenticated users can execute LUA scripts as ...

9.9CVSS9.2AI score0.11111EPSS
Exploits14References9
RedHat Linux
RedHat Linuxadded 2025/11/24 9:46 a.m.5 views

Important: Red Hat Security Advisory: valkey security update

An update for valkey is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.9CVSS8.2AI score0.11111EPSS
Exploits14References5
OSV
OSVadded 2025/11/24 12:0 a.m.1 views

ALSA-2025:21936 Important: valkey security update

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

9.9CVSS9.9AI score0.11111EPSS
Exploits14References10
Rockylinux
Rockylinuxadded 2025/11/21 6:13 p.m.2 views

redis security update

An update is available for redis. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Redis is an advanced key-value store. It is often referred to as a data-structu...

9.9CVSS8.7AI score0.11111EPSS
Exploits14
OSV
OSVadded 2025/11/04 12:0 a.m.2 views

ALSA-2025:19675 Important: valkey security update

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

9.9CVSS10AI score0.11111EPSS
Exploits14References10
RedHat Linux
RedHat Linuxadded 2025/10/30 2:18 p.m.4 views

Important: Red Hat Security Advisory: redis:7 security update

An update for the redis:7 module is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.9CVSS8.2AI score0.11111EPSS
Exploits14References5
OSV
OSVadded 2025/10/29 12:0 a.m.3 views

ALSA-2025:19238 Important: redis:6 security update

Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, ...

9.9CVSS8.4AI score0.11111EPSS
Exploits14References10
Tenable Nessus
Tenable Nessusadded 2025/10/25 12:0 a.m.1 views

Fedora 43 : valkey (2025-fd6619a49f)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-fd6619a49f advisory. Valkey 8.1.4 Upgrade urgency SECURITY: This release includes security fixes we recommend you apply as soon as possible. Security fixes CVE-2025-4984...

9.9CVSS8.7AI score0.11111EPSS
Exploits14References5
Tenable Nessus
Tenable Nessusadded 2025/10/22 12:0 a.m.2 views

RHEL 9 : redis:7 (RHSA-2025:18931)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:18931 advisory. Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, set...

9.9CVSS9.2AI score0.11111EPSS
Exploits14References6
Tenable Nessus
Tenable Nessusadded 2025/10/09 12:0 a.m.2 views

SUSE SLES15 / openSUSE 15 Security Update : valkey (SUSE-SU-2025:03499-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03499-1 advisory. - CVE-2025-49844: Malicious Lua scripts may lead to remote code execution. bsc1250995 - CVE-2025-46817: Malicious Lu...

9.9CVSS8.8AI score0.11111EPSS
Exploits14References10
Tenable Nessus
Tenable Nessusadded 2025/05/17 12:0 a.m.7 views

EulerOS Virtualization 2.12.1 : lua (EulerOS-SA-2025-1548)

According to the versions of the lua package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by...

5.3CVSS6.6AI score0.02019EPSS
Exploits1References2
F5 Networks
F5 Networksadded 2025/03/24 12:22 a.m.13 views

K000150506: Lua vulnerabilities CVE-2014-5461, CVE-2021-43519

Security Advisory Description CVE-2014-5461 Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service crash via a small number of arguments to a function with a large number of fixed arguments...

5.5CVSS5.6AI score0.10626EPSS
Exploits2
Tenable Nessus
Tenable Nessusadded 2024/12/11 12:0 a.m.17 views

Amazon Linux 2022 : lua, lua-devel, lua-libs (ALAS2022-2022-031)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-031 advisory. A stack overflow issue was discovered in Lua in the luaresume function of ldo.c. This flaw allows a local attacker to pass a specially crafted file to the Lua Interpreter, causing a crash that...

5.5CVSS6.1AI score0.00174EPSS
Exploits2References5
Amazon
Amazonadded 2024/02/19 12:0 a.m.3 views

Medium: lua

Issue Overview: In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read. CVE-2021-45985 An issue in the component luaGrunerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs. CVE-2022-33099 Affected Packages: lua...

7.5CVSS7.2AI score0.0033EPSS
Exploits2
Rows per page
Query Builder