BIT-keydb-2023-41056

See a problem?
Import Source
https://github.com/bitnami/vulndb/tree/main/data/keydb/BIT-keydb-2023-41056.json
JSON Data
https://api.test.osv.dev/v1/vulns/BIT-keydb-2023-41056
Aliases
Published
2024-08-22T19:23:05.762Z
Modified
2024-09-11T06:13:26.461679Z
Summary
[none]
Details

Redis is an in-memory database that persists on disk. Redis incorrectly handles resizing of memory buffers which can result in integer overflow that leads to heap overflow and potential remote code execution. This issue has been patched in version 7.0.15 and 7.2.4.

Database specific
{
    "cpes": [
        "cpe:2.3:a:redis:redis:*:*:*:*:*:*:*:*"
    ],
    "severity": "High"
}
References

Affected packages

Bitnami / keydb

Package

Name
keydb
Purl
pkg:bitnami/keydb

Severity

  • 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Affected ranges

Type
SEMVER
Events
Introduced
7.0.9
Fixed
7.0.15
Introduced
7.2.0
Fixed
7.2.4