Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-46686

Опубликовано: 23 июл. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 3.5

Описание

Redis through 8.0.3 allows memory consumption via a multi-bulk command composed of many bulks, sent by an authenticated user. This occurs because the server allocates memory for the command arguments of every bulk, even when the command is skipped because of insufficient permissions. NOTE: this is disputed by the Supplier because abuse of the commands network protocol is not a violation of the Redis Security Model.

РелизСтатусПримечание
devel

needs-triage

esm-apps/bionic

needs-triage

esm-apps/focal

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

esm-apps/xenial

needs-triage

esm-infra-legacy/trusty

needs-triage

jammy

needs-triage

noble

needs-triage

plucky

needs-triage

Показывать по

EPSS

Процентиль: 11%
0.00039
Низкий

3.5 Low

CVSS3

Связанные уязвимости

CVSS3: 3.5
nvd
17 дней назад

Redis through 8.0.3 allows memory consumption via a multi-bulk command composed of many bulks, sent by an authenticated user. This occurs because the server allocates memory for the command arguments of every bulk, even when the command is skipped because of insufficient permissions. NOTE: this is disputed by the Supplier because abuse of the commands network protocol is not a violation of the Redis Security Model.

CVSS3: 3.5
debian
17 дней назад

Redis through 8.0.3 allows memory consumption via a multi-bulk command ...

CVSS3: 4.9
github
17 дней назад

Redis through 7.4.3 allows memory consumption via a multi-bulk command composed of many bulks, sent by an authenticated user. This occurs because the server allocates memory for the command arguments of every bulk, even when the command is skipped because of insufficient permissions.

CVSS3: 4.9
fstec
18 дней назад

Уязвимость системы управления базами данных (СУБД) Redis, связанная с неконтролируемым распределением памяти, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 11%
0.00039
Низкий

3.5 Low

CVSS3