Exposición de Redis
Databases81
score de exposición
57.145
sitios usan
1
en explotación
2
críticos
CVEs
56 resultadosCVE-2025-32023HIGHRedis allows out of bounds writes in hyperloglog commands leading to RCEEPSS 3.9%CVE-2021-32687HIGHInteger overflow issue with intsets in RedisEPSS 3.8%CVE-2025-46817HIGHLua library commands may lead to integer overflow and potential RCEEPSS 3.7%CVE-2021-32627HIGHInteger overflow issue with Streams in RedisEPSS 3.7%CVE-2021-29478HIGHVulnerability in the COPY command for large intsetsEPSS 3.7%CVE-2021-32628HIGHVulnerability in handling large ziplistsEPSS 3.6%CVE-2021-41099HIGHInteger overflow issue with strings in RedisEPSS 3.4%CVE-2022-35951HIGHRedis subject to Integer Overflow leading to Remote Code Execution via Heap OverflowEPSS 2.7%CVE-2023-41056HIGHRedis vulnerable to integer overflow in certain payloadsEPSS 2.6%CVE-2021-32762HIGHInteger overflow that can lead to heap overflow in redis-cli, redis-sentinel on some platformsEPSS 2.5%CVE-2022-31144HIGHPotential heap overflow in Redis EPSS 2.3%CVE-2022-24735LOWLua scripts can be manipulated to overcome ACL rules in RedisEPSS 2.2%CVE-2021-32672MEDIUMVulnerability in Lua Debugger in RedisEPSS 1.7%CVE-2022-24736LOWA Malformed Lua script can crash RedisEPSS 1.5%CVE-2026-25243HIGHredis-server RESTORE invalid memory access may allow remote code executionEPSS 1.2%CVE-2026-23631MEDIUMredis-server Lua use-after-free may allow remote code executionEPSS 1.2%CVE-2021-3470—A heap overflow issue was found in Redis in versions before 5.0.10, before 6.0.9 and before 6.2.0 when using a heap allocator other than jemEPSS 1.1%CVE-2025-46819MEDIUMRedis is vulnerable to DoS via specially crafted LUA scriptsEPSS 1.0%CVE-2024-31228MEDIUMDenial-of-service due to unbounded pattern matching in RedisEPSS 1.0%CVE-2023-28856MEDIUM`HINCRBYFLOAT` can be used to crash a redis-server processEPSS 1.0%
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →