Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-3470

Опубликовано: 31 мар. 2021
Источник: nvd
CVSS3: 5.3
CVSS2: 5
EPSS Низкий

Описание

A heap overflow issue was found in Redis in versions before 5.0.10, before 6.0.9 and before 6.2.0 when using a heap allocator other than jemalloc or glibc's malloc, leading to potential out of bound write or process crash. Effectively this flaw does not affect the vast majority of users, who use jemalloc or glibc malloc.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redislabs:redis:*:*:*:*:*:*:*:*
Версия до 5.0.10 (исключая)
cpe:2.3:a:redislabs:redis:*:*:*:*:*:*:*:*
Версия от 6.0.0 (включая) до 6.0.9 (исключая)
cpe:2.3:a:redislabs:redis:6.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:redislabs:redis:6.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:redislabs:redis:6.2.0:rc3:*:*:*:*:*:*

EPSS

Процентиль: 71%
0.00665
Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-119
CWE-787

Связанные уязвимости

ubuntu логотип

CVE-2021-3470

CVSS3: 5.3
ubuntu
почти 5 лет назад

A heap overflow issue was found in Redis in versions before 5.0.10, before 6.0.9 and before 6.2.0 when using a heap allocator other than jemalloc or glibc's malloc, leading to potential out of bound write or process crash. Effectively this flaw does not affect the vast majority of users, who use jemalloc or glibc malloc.

redhat логотип

CVE-2021-3470

CVSS3: 5.3
redhat
больше 5 лет назад

A heap overflow issue was found in Redis in versions before 5.0.10, before 6.0.9 and before 6.2.0 when using a heap allocator other than jemalloc or glibc's malloc, leading to potential out of bound write or process crash. Effectively this flaw does not affect the vast majority of users, who use jemalloc or glibc malloc.

msrc логотип

CVE-2021-3470

CVSS3: 5.3
msrc
почти 5 лет назад

Описание отсутствует

debian логотип

CVE-2021-3470

CVSS3: 5.3
debian
почти 5 лет назад

A heap overflow issue was found in Redis in versions before 5.0.10, be ...

github логотип

GHSA-mqmr-8cxh-pqf6

github
больше 3 лет назад

A heap overflow issue was found in Redis in versions before 5.0.10, before 6.0.9 and before 6.2.0 when using a heap allocator other than jemalloc or glibc's malloc, leading to potential out of bound write or process crash. Effectively this flaw does not affect the vast majority of users, who use jemalloc or glibc malloc.

EPSS

Процентиль: 71%
0.00665
Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-119
CWE-787