CNNVD-202507-716 Information
CNNVD ID
CNNVD-202507-716
Related CVE
- CNNVD Published: 2025-07-07
Description (Chinese)
Redis是美国Redis公司的一套开源的使用ANSI C编写、支持网络、可基于内存亦可持久化的日志型、键值(Key-Value)存储数据库,并提供多种语言的API。 Redis存在安全漏洞,该漏洞源于未经验证的连接可能导致IP协议错误,最终导致拒绝服务。
Description (English)
Redis is an open source for the United States of America, using ANSI C to develop, support networks, store databases based on memory and sustainable log type, key (Key-Value) and provide a multilingual API. There is a security loophole in Redis, which stems from unverified connections that could lead to IP protocol errors and ultimately to service denials.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Redisgraph
Published
2025-07-07
Last Modified
2026-02-24
References
https://github.com/redis/redis/releases/tag/7.2.10 https://github.com/redis/redis/security/advisories/GHSA-4q32-c38c-pwgq https://github.com/redis/redis/releases/tag/7.4.5 https://github.com/redis/redis/commit/bde62951accfc4bb0a516276fd0b4b307e140ce2 https://github.com/redis/redis/releases/tag/6.2.19 https://github.com/redis/redis/releases/tag/8.0.3 https://access.redhat.com/security/cve/cve-2025-48367
Patch
https://github.com/redis/redis/releases
Share on: