114 matches found
TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure
Cybersecurity researchers have called attention to a "massive campaign" that has systematically targeted cloud native environments to set up malicious infrastructure for follow-on exploitation. The activity, observed around December 25, 2025, and described as "worm-driven," leveraged exposed Dock...
CVE-2023-43119
An Access Control issue discovered in Extreme Networks Switch Engine EXOS before 32.5.1.5, also fixed in 22.7, 31.7.2 allows attackers to gain escalated privileges using crafted telnet commands via Redis server...
RHEL 9 : redis (RHSA-2025:19086)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19086 advisory. Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, set...
EUVD-2019-0307
Malware in sbrugna...
EUVD-2018-1927
Malware in sbrugna...
EUVD-2020-25917
Malware in sbrugna...
EUVD-2024-1545
Malicious code in bioql PyPI...
EUVD-2023-47539
Malicious code in bioql PyPI...
EUVD-2023-29130
Malicious code in bioql PyPI...
Gopherus
This tool is called Gopherus and it generates gopher links for exploiting Server-Side Request Forgery SSRF and gaining Remote Code Execution RCE in various servers. The tool can be used to exploit vulnerabilities in MySQL, PostgreSQL, FastCGI, Memcached, Redis, Zabbix, and SMTP servers. The tool...
The vulnerability of the Redis database management system server allows a hacker to execute arbitrary code.
The vulnerability of the Redis database management system is related to a numerical overflow in the buffer when executing commands that use the HyperLogLog algorithm. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted HLL command...
TencentOS Server 4: pcp (TSSA-2024:0788)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0788 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
The vulnerability of the Redis database management system server, which allows a hacker to cause a service failure
The vulnerability of the Redis database management system is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...
redis: Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client
A flaw was found in the Redis server. This flaw allows an unauthenticated client to cause an unlimited growth of output buffers until the server runs out of memory or is killed. By default, the Redis configuration does not limit the output buffer of normal clients see client-output-buffer-limit...
Alibaba Cloud Linux 3 : 0097: pcp (ALINUX3-SA-2024:0097)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0097 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-3019: A flaw was found in PCP. The default...
redis: Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client
A flaw was found in the Redis server. This flaw allows an unauthenticated client to cause an unlimited growth of output buffers until the server runs out of memory or is killed. By default, the Redis configuration does not limit the output buffer of normal clients see client-output-buffer-limit...
OESA-2025-1474 redis security update
Redis is an advanced key-value store. It is often referred to as a dattructure server since keys can contain strings, hashes ,lists, sets anorted sets. Security Fixes: Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An...
redis: Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client
A flaw was found in the Redis server. This flaw allows an unauthenticated client to cause an unlimited growth of output buffers until the server runs out of memory or is killed. By default, the Redis configuration does not limit the output buffer of normal clients see client-output-buffer-limit...
SUSE CVE-2025-21605
Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the outpu...
Linux Distros Unpatched Vulnerability : CVE-2024-3019
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to the local network, allowing remote command execution with the...