logo
DATABASE RESOURCES PRICING ABOUT US

Remote Code Execution

Description

Redis is vulnerable to remote code execution. An integer overflow bug allows an attacker to execute arbitrary code using the `STRALGO LCS` command to corrupt the heap.


Affected Software


CPE Name Name Version
redis:sid 5:6.0.9-1
redis:3.13 6.0.11-r0
redis:edge 5.0.8-r0
redis:edge 6.0.1-r0
redis:edge 5.0.7-r0
redis:edge 6.2.3-r0
redis:edge 6.2.1-r0
redis:edge 5.0.9-r0
redis:bullseye 5:6.0.9-1
redis:sid 5:6.0.9-1
redis:3.13 6.0.11-r0
redis:edge 5.0.8-r0
redis:edge 6.0.1-r0
redis:edge 5.0.7-r0
redis:edge 6.2.3-r0
redis:edge 6.2.1-r0
redis:edge 5.0.9-r0
redis:bullseye 5:6.0.9-1

Related