Описание
The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service (out-of-bounds array index and application crash) or possibly have unspecified other impact by leveraging "limited access to the machine."
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 5:4.0.9-1 |
| devel | not-affected | 5:4.0.11-2 |
| esm-apps/bionic | not-affected | 5:4.0.9-1 |
| esm-apps/xenial | released | 2:3.0.6-1ubuntu0.2 |
| esm-infra-legacy/trusty | not-affected | code not present |
| precise/esm | DNE | |
| trusty | not-affected | code not present |
| trusty/esm | not-affected | code not present |
| upstream | released | 4:4.0.2-5 |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service (out-of-bounds array index and application crash) or possibly have unspecified other impact by leveraging "limited access to the machine."
The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service (out-of-bounds array index and application crash) or possibly have unspecified other impact by leveraging "limited access to the machine."
The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows atta ...
The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service (out-of-bounds array index and application crash) or possibly have unspecified other impact by leveraging "limited access to the machine."
Уязвимость функции clusterLoadConfig (cluster.c) системы управления базами данных Redis, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3