Lucene search
K

114 matches found

The Hacker News
The Hacker News
added 2026/02/09 8:37 a.m.23 views

TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure

Cybersecurity researchers have called attention to a "massive campaign" that has systematically targeted cloud native environments to set up malicious infrastructure for follow-on exploitation. The activity, observed around December 25, 2025, and described as "worm-driven," leveraged exposed Dock...

10CVSS6.2AI score0.99562EPSS
Exploits431
RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.8 views

CVE-2023-43119

An Access Control issue discovered in Extreme Networks Switch Engine EXOS before 32.5.1.5, also fixed in 22.7, 31.7.2 allows attackers to gain escalated privileges using crafted telnet commands via Redis server...

9.8CVSS7.4AI score0.0061EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/23 12:0 a.m.5 views

RHEL 9 : redis (RHSA-2025:19086)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19086 advisory. Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, set...

9.9CVSS9.2AI score0.86767EPSS
Exploits15References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0307

Malware in sbrugna...

9.3CVSS8.1AI score0.01752EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-1927

Malware in sbrugna...

6.1CVSS6.3AI score0.0125EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-25917

Malware in sbrugna...

9.1CVSS7.8AI score0.0244EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-1545

Malicious code in bioql PyPI...

9CVSS9AI score0.01479EPSS
Exploits2References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-47539

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0061EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-29130

Malicious code in bioql PyPI...

6.5CVSS4.3AI score0.00902EPSS
Exploits0References7
Gitee
Gitee
added 2025/07/27 3:31 a.m.95 views

Gopherus

This tool is called Gopherus and it generates gopher links for exploiting Server-Side Request Forgery SSRF and gaining Remote Code Execution RCE in various servers. The tool can be used to exploit vulnerabilities in MySQL, PostgreSQL, FastCGI, Memcached, Redis, Zabbix, and SMTP servers. The tool...

8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.10 views

The vulnerability of the Redis database management system server allows a hacker to execute arbitrary code.

The vulnerability of the Redis database management system is related to a numerical overflow in the buffer when executing commands that use the HyperLogLog algorithm. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted HLL command...

7CVSS6.5AI score0.03877EPSS
Exploits4References16Affected Software12
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.8 views

TencentOS Server 4: pcp (TSSA-2024:0788)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0788 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.8CVSS7.2AI score0.01002EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.9 views

The vulnerability of the Redis database management system server, which allows a hacker to cause a service failure

The vulnerability of the Redis database management system is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...

7.8CVSS6.7AI score0.00824EPSS
Exploits0References10Affected Software7
RedHat Linux
RedHat Linux
added 2025/05/15 2:54 a.m.4 views

redis: Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client

A flaw was found in the Redis server. This flaw allows an unauthenticated client to cause an unlimited growth of output buffers until the server runs out of memory or is killed. By default, the Redis configuration does not limit the output buffer of normal clients see client-output-buffer-limit...

7.5CVSS7.4AI score0.00824EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.9 views

Alibaba Cloud Linux 3 : 0097: pcp (ALINUX3-SA-2024:0097)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0097 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-3019: A flaw was found in PCP. The default...

8.8CVSS7.2AI score0.01002EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/05/12 1:31 a.m.3 views

redis: Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client

A flaw was found in the Redis server. This flaw allows an unauthenticated client to cause an unlimited growth of output buffers until the server runs out of memory or is killed. By default, the Redis configuration does not limit the output buffer of normal clients see client-output-buffer-limit...

7.5CVSS7.4AI score0.00824EPSS
Exploits0References6
OSV
OSV
added 2025/05/09 12:42 p.m.5 views

OESA-2025-1474 redis security update

Redis is an advanced key-value store. It is often referred to as a dattructure server since keys can contain strings, hashes ,lists, sets anorted sets. Security Fixes: Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An...

7.5CVSS7.2AI score0.00824EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/05/06 3:35 p.m.5 views

redis: Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client

A flaw was found in the Redis server. This flaw allows an unauthenticated client to cause an unlimited growth of output buffers until the server runs out of memory or is killed. By default, the Redis configuration does not limit the output buffer of normal clients see client-output-buffer-limit...

7.5CVSS7.4AI score0.00824EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2025/04/25 2:15 a.m.6 views

SUSE CVE-2025-21605

Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the outpu...

7.5CVSS7.3AI score0.00824EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-3019

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to the local network, allowing remote command execution with the...

8.8CVSS7AI score0.01002EPSS
Exploits0References3
Rows per page
Query Builder