Lucene search
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.GENTOO_GLSA-202103-02.NASLHistoryApr 01, 2021 - 12:00 a.m.
GLSA-202103-02 : Redis: Remote code execution
2021-04-0100:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
24
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
9.1 High
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
78.0%
The remote host is affected by the vulnerability described in GLSA-202103-02 (Redis: Remote code execution)
It was discovered that there were a number of integer overflow issues in Redis.
Impact :
A remote attacker, able to connect to a Redis instance, could send a malicious crafted large request possibly resulting in the execution of arbitrary code with the privileges of the process or a Denial of Service condition.
Workaround :
There is no known workaround at this time.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Gentoo Linux Security Advisory GLSA 202103-02.
#
# The advisory text is Copyright (C) 2001-2024 Gentoo Foundation, Inc.
# and licensed under the Creative Commons - Attribution / Share Alike
# license. See http://creativecommons.org/licenses/by-sa/3.0/
#
include("compat.inc");
if (description)
{
script_id(148268);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/12");
script_cve_id("CVE-2021-21309");
script_xref(name:"GLSA", value:"202103-02");
script_name(english:"GLSA-202103-02 : Redis: Remote code execution");
script_summary(english:"Checks for updated package(s) in /var/db/pkg");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Gentoo host is missing one or more security-related
patches."
);
script_set_attribute(
attribute:"description",
value:
"The remote host is affected by the vulnerability described in GLSA-202103-02
(Redis: Remote code execution)
It was discovered that there were a number of integer overflow issues in
Redis.
Impact :
A remote attacker, able to connect to a Redis instance, could send a
malicious crafted large request possibly resulting in the execution of
arbitrary code with the privileges of the process or a Denial of Service
condition.
Workaround :
There is no known workaround at this time."
);
script_set_attribute(
attribute:"see_also",
value:"https://security.gentoo.org/glsa/202103-02"
);
script_set_attribute(
attribute:"solution",
value:
"All Redis 5.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-db/redis-5.0.12'
All Redis 6.x users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-db/redis-6.0.12'"
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-21309");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:redis");
script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/02/26");
script_set_attribute(attribute:"patch_publication_date", value:"2021/03/31");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/04/01");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Gentoo Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("qpkg.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo");
if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (qpkg_check(package:"dev-db/redis", unaffected:make_list("ge 5.0.12", "ge 6.0.12"), vulnerable:make_list("lt 6.0.12"))) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = qpkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "Redis");
}
Related
nessus
nessus
Debian DLA-2576-1 : redis security update
2021-03-01 00:00:00
FreeBSD : redis -- Integer overflow on 32-bit systems (0e38b8f8-75dd-11eb-83f2-8c164567ca3c)
2021-02-24 00:00:00
openSUSE Security Update : redis (openSUSE-2021-682)
2021-05-18 00:00:00
redhatcve
redhatcve
CVE-2021-21309
2021-02-24 20:04:13
osv
osv
redis - security update
2021-02-25 00:00:00
CVE-2021-21309
2021-02-26 22:15:19
redis vulnerabilities
2022-08-03 10:10:42
cbl_mariner
cbl_mariner
CVE-2021-21309 affecting package redis 5.0.5-7
2021-04-06 23:50:05
CVE-2021-21309 affecting package redis for versions less than 5.0.5-7
2022-04-09 06:51:55
openvas
openvas
Debian: Security Advisory (DLA-2576-1)
2021-02-26 00:00:00
Mageia: Security Advisory (MGASA-2021-0155)
2022-01-28 00:00:00
Redis Integer Overflow Vulnerability (GHSA-hgj8-vff2-7cjf)
2021-03-02 00:00:00
debian
debian
[SECURITY] [DLA 2576-1] redis security update
2021-02-25 17:40:40
mageia
mageia
Updated redis packages fix security vulnerability
2021-03-27 17:27:02
Updated redis package fixes a security vulnerability
2021-07-09 01:43:19
debiancve
debiancve
CVE-2021-21309
2021-02-26 22:15:19
ubuntucve
ubuntucve
CVE-2021-21309
2021-02-26 00:00:00
github
github
Integer overflow on 32-bit systems
2021-08-11 20:11:11
prion
prion
Integer overflow
2021-02-26 22:15:00
veracode
veracode
Denial Of Service (DoS)
2021-02-23 18:33:45
gentoo
gentoo
Redis: Remote code execution
2021-03-31 00:00:00
cvelist
cvelist
CVE-2021-21309 Integer overflow on 32-bit systems
2021-02-26 21:50:16
cve
cve
CVE-2021-21309
2021-02-26 22:15:19
nvd
nvd
CVE-2021-21309
2021-02-26 22:15:19
freebsd
freebsd
redis -- Integer overflow on 32-bit systems
2021-02-22 00:00:00
alpinelinux
alpinelinux
CVE-2021-21309
2021-02-26 22:15:19
suse
suse
Security update for redis (important)
2021-05-08 00:00:00
ubuntu
ubuntu
Redis vulnerabilities
2022-08-03 00:00:00
ibm
ibm
redhat
redhat
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
9.1 High
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
78.0%
Related for GENTOO_GLSA-202103-02.NASL