redislabs

Top products

The 15 most recently published vulnerabilities affecting redislabs.

• CVE-2023-47003An issue in RedisGraph v.2.12.10 allows an attacker to execute arbitrary code and cause a denial of service via a crafted string in DataBlock_ItemIsDeleted.9.8Nov 16, 2023
• CVE-2023-47004Buffer Overflow vulnerability in Redis RedisGraph v.2.x through v.2.12.8 and fixed in v.2.12.9 allows an attacker to execute arbitrary code via the code logic after valid authentication.8.8Nov 6, 2023
• CVE-2020-21468A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a released version, such as 5.0.77.5Sep 20, 2021
• CVE-2021-32761Integer overflow issues with *BIT commands on 32-bit systems7.5Jul 21, 2021
• CVE-2021-32625Redis vulnerability in STRALGO LCS on 32-bit systems7.5Jun 2, 2021
• CVE-2021-29478Vulnerability in the COPY command for large intsets7.5May 4, 2021
• CVE-2021-29477Vulnerability in the STRALGO LCS command7.5May 4, 2021
• CVE-2021-3470A heap overflow issue was found in Redis in versions before 5.0.10, before 6.0.9 and before 6.2.0 when using a heap allocator other than jemalloc or glibc's malloc, leading to potential out of boun...5.3Mar 31, 2021
• CVE-2021-21309Integer overflow on 32-bit systems5.4Feb 26, 2021
• CVE-2020-35668RedisGraph 2.x through 2.2.11 has a NULL Pointer Dereference that leads to a server crash because it mishandles an unquoted string, such as an alias that has not yet been introduced.7.5Dec 23, 2020
• CVE-2020-14147An integer overflow in the getnum function in lua_struct.c in Redis before 6.0.3 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (...7.7Jun 15, 2020
• CVE-2020-7105async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked.7.5Jan 16, 2020
• CVE-2013-0180Insecure temporary file vulnerability in Redis 2.6 related to /tmp/redis.ds.5.5Nov 1, 2019
• CVE-2013-0178Insecure temporary file vulnerability in Redis before 2.6 related to /tmp/redis-%p.vm.5.5Nov 1, 2019
• CVE-2019-10192A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before 5.0.4. By carefully corrupting a hyperloglog usin...7.2Jul 11, 2019