Known Vulnerabilities for products from Redis
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Redis".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
|CVE||Shortened Description||Severity||Publish Date||Last Modified|
|CVE-2021-33026||The Flask-Caching extension through 1.10.1 for Flask relies on Pickle for serialization, which may lead to remote code execut...||9.8 - CRITICAL||2021-05-13||2021-05-13|
|CVE-2021-32625||Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. An int...||Not Provided||2021-06-02||2021-06-11|
|CVE-2021-29478||Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. An int...||8.8 - HIGH||2021-05-04||2021-05-12|
|CVE-2021-29477||Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. An int...||8.8 - HIGH||2021-05-04||2021-06-11|
|CVE-2021-29469||Node-redis is a Node.js Redis client. Before version 3.1.1, when a client is in monitoring mode, the regex begin used to dete...||7.5 - HIGH||2021-04-23||2021-06-11|
|CVE-2021-22194||In all versions of GitLab starting from 13.7, marshalled session keys were being stored in Redis.||4.4 - MEDIUM||2021-03-26||2021-03-26|
|CVE-2021-21309||Redis is an open-source, in-memory database that persists on disk. In affected versions of Redis an integer overflow bug in 3...||8.8 - HIGH||2021-02-26||2021-03-31|
|CVE-2021-3470||A heap overflow issue was found in Redis in versions before 5.0.10, before 6.0.9 and before 6.2.0 when using a heap allocator...||5.3 - MEDIUM||2021-03-31||2021-03-31|
|CVE-2020-23249||GigaVUE-OS (GVOS) 5.4 - 5.9 stores a Redis database password in plaintext.||4.7 - MEDIUM||2021-01-05||2021-03-23|
|CVE-2020-15698||An issue was discovered in Joomla! through 3.9.19. Inadequate filtering on the system information screen could expose Redis o...||5.3 - MEDIUM||2020-07-15||2021-03-23|
Redis Labs Ltd.