redis - CVE CyberSecurity Database News (Page 2)

Mar 26, 2023 Exploit redis Redis-py

CVE-2023-28858: Unintended Data Leakage in redis-py Prior to Version 4.5.3

A new security vulnerability with the identifier CVE-2023-28858 has been discovered in the popular python Redis library, redis-py. The vulnerability is known to affect versions

Mar 26, 2023 redis Redis-py

CVE-2023-28859 - Data Leakage across AsyncIO Connections in redis-py

A vulnerability has been discovered in the redis-py library, affecting versions before 4.4.4 and 4.5.x before 4.5.4. The vulnerability,

Mar 20, 2023 Exploit redis

CVE-2023-28425: Critical Vulnerability in Redis' MSETNX Command Affecting Versions 7..8 to 7..10

Redis, an open-source in-memory data store that also persists data to disk, has recently been affected by a critical vulnerability. This vulnerability, identified as CVE-2023-28425,

Mar 1, 2023 Exploit redis

CVE-2022-36021 - Exploiting Redis String Matching Commands to Trigger a Denial-of-Service (DoS) Attack

In this long-read post, we will discuss an important vulnerability in Redis, which when exploited, could potentially put your entire Redis infrastructure at risk. The

CVE-2023-22458: Redis Denial-of-Service Vulnerability Due to Assertion Failure Triggered by HRANDFIELD or ZRANDMEMBER Commands

Jan 20, 2023 Exploit redis

CVE-2023-22458: Redis Denial-of-Service Vulnerability Due to Assertion Failure Triggered by HRANDFIELD or ZRANDMEMBER Commands

In this post, we will discuss a recent security vulnerability, CVE-2023-22458, present in the Redis in-memory database. The vulnerability allows authenticated users to crash Redis