Lucene search
K

330 matches found

SUSE CVE
SUSE CVE
added 2026/03/02 12:25 a.m.8 views

SUSE CVE-2025-67733

Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious user can use scripting commands to inject arbitrary information into the response stream for the given client, potentially corrupting or returning tampered data to other users on the same...

6.8CVSS6AI score0.00586EPSS
Exploits0References8
OSV
OSV
added 2026/03/02 12:0 a.m.7 views

ALSA-2026:3507 Important: valkey security update

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2026/03/02 12:0 a.m.1 views

openSUSE Security Advisory (SUSE-SU-2026:0685-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References5
OSV
OSV
added 2026/02/28 9:8 a.m.4 views

RLSA-2026:3443 Important: valkey security update

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.5CVSS6AI score0.00586EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2026/02/28 9:8 a.m.10 views

valkey security update

An update is available for valkey. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Valkey is an advanced key-value store. It is often referred to as a data...

8.5CVSS6AI score0.00586EPSS
Exploits0
OSV
OSV
added 2026/02/27 11:53 a.m.4 views

SUSE-SU-2026:0685-1 Security update for valkey

This update for valkey fixes the following issues: Update to version 8.0.7. Security issues fixed: - CVE-2025-67733: data tampering and denial of service via improper null character handling in Lua scripts bsc1258746. - CVE-2026-21863: denial of service via invalid clusterbus packet bsc1258788...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2026/02/27 11:53 a.m.5 views

Security update for valkey

This update for valkey fixes the following issues: Update to version 8.0.7. Security issues fixed: CVE-2025-67733: data tampering and denial of service via improper null character handling in Lua scripts bsc1258746. CVE-2026-21863: denial of service via invalid clusterbus packet bsc1258788. Other...

6.8CVSS6AI score0.00586EPSS
Exploits0References8
OSV
OSV
added 2026/02/27 10:25 a.m.3 views

RHSA-2026:3443 Red Hat Security Advisory: valkey security update

Bulletin has no description...

7.5CVSS5.9AI score0.00586EPSS
Exploits0References13
CBLMariner
CBLMariner
added 2026/02/27 2:30 a.m.5 views

CVE-2026-21863 affecting package valkey for versions less than 8.0.7-1

CVE-2026-21863 affecting package valkey for versions less than 8.0.7-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS5.9AI score0.00552EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/02/27 2:30 a.m.5 views

CVE-2025-67733 affecting package valkey for versions less than 8.0.7-1

CVE-2025-67733 affecting package valkey for versions less than 8.0.7-1. An upgraded version of the package is available that resolves this issue...

8.5CVSS5.9AI score0.00586EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/02/26 3:21 p.m.4 views

valkey: Valkey: Denial of Service via invalid clusterbus packet

A flaw was found in Valkey, a distributed key-value database. A malicious actor with access to the Valkey clusterbus port can exploit an input validation vulnerability by sending a specially crafted invalid clusterbus packet. This lack of validation for clusterbus ping extension packets can lead ...

7.5CVSS5.7AI score0.00552EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/26 3:21 p.m.8 views

Important: Red Hat Security Advisory: valkey security update

An update for valkey is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.5CVSS5.9AI score0.00586EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/02/26 3:21 p.m.10 views

Valkey: Valkey: Data tampering and denial of service via improper null character handling in Lua scripts

A flaw was found in Valkey, a distributed key-value database. A malicious user can exploit this vulnerability by using scripting commands to inject arbitrary information into the response stream. This is caused by improper handling of null characters in the error handling code for Lua scripts...

8.5CVSS5.9AI score0.00586EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/02/26 9:1 a.m.8 views

Malformed Valkey Cluster bus message can lead to Remote DoS

...

7.5CVSS5.9AI score0.00552EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/02/26 9:1 a.m.8 views

Valkey Affected by RESP Protocol Injection via Lua error_reply

...

8.5CVSS5.9AI score0.00586EPSS
Exploits0
OSV
OSV
added 2026/02/26 8:53 a.m.6 views

BIT-VALKEY-2026-27623 Valkey has Pre-Authentication DOS from malformed RESP request

Valkey is a distributed key-value database. Starting in version 9.0.0 and prior to version 9.0.3, a malicious actor with network access to Valkey can cause the system to abort by triggering an assertion. When processing incoming requests, the Valkey system does not properly reset the networking...

7.5CVSS5.5AI score0.00353EPSS
Exploits0References5
OSV
OSV
added 2026/02/26 8:53 a.m.5 views

BIT-VALKEY-2026-21863 Malformed Valkey Cluster bus message can lead to Remote DoS

Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious actor with access to the Valkey clusterbus port can send an invalid packet that may cause an out bound read, which might result in the system crashing. The Valkey clusterbus packet processin...

7.5CVSS5.9AI score0.00552EPSS
Exploits0References9
OSV
OSV
added 2026/02/26 8:53 a.m.8 views

BIT-VALKEY-2025-67733 Valkey Affected by RESP Protocol Injection via Lua error_reply

Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious user can use scripting commands to inject arbitrary information into the response stream for the given client, potentially corrupting or returning tampered data to other users on the same...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References8
OSV
OSV
added 2026/02/26 12:0 a.m.4 views

OPENSUSE-SU-2026:10266-1 valkey-9.0.3-1.1 on GA media

These are all security issues fixed in the valkey-9.0.3-1.1 package on the GA media of openSUSE Tumbleweed...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References3
OSV
OSV
added 2026/02/26 12:0 a.m.7 views

ALSA-2026:3443 Important: valkey security update

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References6
Rows per page
Query Builder