| Max CVSS | 7.5 | Min CVSS | 4.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-10192 | 6.5 |
A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.14 and 5.x before 5.0.4. By carefully corrupting a hyperloglog using the SETRANGE command, an attacker could trick Redis
|
28-10-2021 - 12:14 | 11-07-2019 - 19:15 | |
| CVE-2018-11218 | 7.5 |
Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows.
|
04-08-2021 - 17:14 | 17-06-2018 - 17:29 | |
| CVE-2018-11219 | 7.5 |
An Integer Overflow issue was discovered in the struct library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2, leading to a failure of bounds checking.
|
04-08-2021 - 17:14 | 17-06-2018 - 17:29 | |
| CVE-2018-12326 | 4.6 |
Buffer overflow in redis-cli of Redis before 4.0.10 and 5.x before 5.0 RC3 allows an attacker to achieve code execution and escalate to higher privileges via a crafted command line. NOTE: It is unclear whether there are any common situations in which
|
17-01-2019 - 11:29 | 17-06-2018 - 14:29 |