19 matches found
ThreatsDay Bulletin: AI Voice Cloning Exploit, Wi-Fi Kill Switch, PLC Vulns, and 14 More Stories
The internet never stays quiet. Every week, new hacks, scams, and security problems show up somewhere. This week's stories show how fast attackers change their tricks, how small mistakes turn into big risks, and how the same old tools keep finding new ways to break in. Read on to catch up before...
Security update for redis (critical)
openSUSE security update: security update for redis ------------------------------------------------------------- Announcement ID: openSUSE-SU-2025-20121-1 Rating: critical References: bsc1250995 bsc1252996 Cross-References: CVE-2025-46817 CVE-2025-46818 CVE-2025-46819 CVE-2025-49844 CVE-2025-625...
ROS-20251125-11
A vulnerability in the Redis database management system DBMS is associated with boundary checking errors in the command XACKDEL. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
BIT-KEYDB-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
Linux Distros Unpatched Vulnerability : CVE-2025-62507
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigge...
CVE-2025-62507
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
Redis Buffer Overflow Vulnerability (GHSA-jhjx-x4cf-4vm8)
Redis is prone to a stack-based buffer overflow vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:redis:redis"; if...
CVE-2025-62507
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
UBUNTU-CVE-2025-62507
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
CVE-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
CVE-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
CVE-2025-62507
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
CVE-2025-62507
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
CVE-2025-62507
CVE-2025-62507 affects Redis Open Source. In Redis versions 8.2.0 and above, the XACKDEL command can trigger a stack-based buffer overflow, potentially enabling remote code execution. The issue is fixed in Redis 8.2.3; remediation guidance includes upgrading to 8.2.3 or applying ACLs to restrict ...
SUSE CVE-2025-62507
Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...
PT-2025-44989
Name of the Vulnerable Software and Affected Versions Redis versions 8.2.0 through 8.2.2 Description Redis, an open-source, in-memory database, contains a stack buffer overflow issue in the XACKDEL command when handling multiple IDs. Successful exploitation of this issue may allow a remote attack...
Redis 安全漏洞
Redis is an open source, ANSI C, network-enabled, memory-based, persistent logging, key-value Key-Value storage database from Redis, Inc. that provides APIs in multiple languages. A security vulnerability exists in Redis version 8.2.0 and versions prior to 8.2.3, which stems from a stack buffer...
FreeBSD : redis -- Bug in XACKDEL may lead to stack overflow and potential RCE (5523394e-b889-11f0-9446-f02f7497ecda)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 5523394e-b889-11f0-9446-f02f7497ecda advisory. Google Big Sleep reports: A user can run the XACKDEL command with multiple ID's and trigger a stack...
redis -- Bug in XACKDEL may lead to stack overflow and potential RCE
Google Big Sleep reports: A user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. The problem exists in Redis 8.2 or newer. The code doesn't handle the case where the number of ID's exceeds the...