Lucene search
K

5 matches found

OSV
OSV
added 2024/10/07 8:15 p.m.6 views

AZL-52011 CVE-2024-31228 affecting package valkey for versions less than 8.0.1-1

Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST and ACL definitions. Matching of extremel...

6.5CVSS6.6AI score0.01009EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2023/03/10 8:0 a.m.3 views

Integer Overflow in several Redis commands can lead to denial of service.

...

6.5CVSS4.6AI score0.00902EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/03/02 3:1 a.m.10 views

CVE-2023-25155 Integer Overflow in several Redis commands can lead to denial of service.

Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD commands can trigger an integer overflow, resulting in a runtime assertion and termination of the Redis server process. This problem affects all Redis...

5.5CVSS7.3AI score0.00902EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2023/01/24 8:0 a.m.2 views

Integer overflow in multiple Redis commands can lead to denial-of-service

...

5.5CVSS5.6AI score0.69355EPSS
Exploits0
Huntr
Huntr
added 2021/10/03 7:20 a.m.25 views

Server-Side Request Forgery (SSRF) in appwrite/appwrite

Description An authenticated SSRF vulnerability exists in appwrite's webhooks / tasks feature. The gopher:// protocol can be used to cause code execution on the Redis server that comes along with appwrite. The attacker must know the IP address of the redis-server which can be done by creating...

2.2AI score
Exploits0
Rows per page
Query Builder