A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. An out of bounds write vulnerability exists in the handling of the client-output-buffer-limit option during the CONFIG SET command for the Redis data structure store. A crafted CONFIG SET command can lead to an out of bounds write potentially resulting in code execution.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HRedislabs Redis
APPRedislabs3.2.03.2.13.2.23.2.3
Powiązane podatności
Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x befo...
An Integer Overflow issue was discovered in the struct library in the Lua subsystem in Redis before 3.2.12, 4....
The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service (out-...
A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: th...
Redis is an in-memory database that persists on disk. A vulnerability involving out-of-bounds read and integer...