Lucene search
Veracode Vulnerability DatabaseVERACODE:19839HistoryMay 16, 2019 - 3:26 a.m.
Arbitrary Code Execution
2019-05-1603:26:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
EPSS
0.006
Percentile
78.2%
The Redis command line tool ‘redis-cli’ is vulnerable to arbitrary code execution through the -h (host) command line parameter which allows an attacker to achieve code execution and escalate to higher privileges.
References
access.redhat.com/errata/RHSA-2019:0052
access.redhat.com/errata/RHSA-2019:0094
access.redhat.com/security/updates/classification/#moderate
gist.github.com/fakhrizulkifli/f831f40ec6cde4f744c552503d8698f0
github.com/antirez/redis/commit/9fdcc15962f9ff4baebe6fdd947816f43f730d50
raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES
raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES
www.exploit-db.com/exploits/44904/
Related
redhatcve
redhatcve
CVE-2018-12326
2018-06-22 14:48:47
prion
prion
Buffer overflow
2018-06-17 14:29:00
ubuntucve
ubuntucve
CVE-2018-12326
2018-06-17 00:00:00
packetstorm
packetstorm
Redis-cli Buffer Overflow
2018-06-18 00:00:00
debiancve
debiancve
CVE-2018-12326
2018-06-17 14:29:00
nvd
nvd
CVE-2018-12326
2018-06-17 14:29:00
osv
osv
CVE-2018-12326
2018-06-17 14:29:00
redis - security update
2018-06-17 00:00:00
redis - security update
2018-06-26 00:00:00
symantec
symantec
Redis CVE-2018-12326 Buffer Overflow Vulnerability
2018-06-17 00:00:00
exploitpack
exploitpack
Redis-cli 5.0 - Buffer Overflow (PoC)
2018-06-18 00:00:00
openvas
openvas
Redis Buffer Overflow Vulnerability
2018-06-18 00:00:00
Debian: Security Advisory (DLA-1396-1)
2018-07-09 00:00:00
Debian: Security Advisory (DSA-4230-1)
2018-06-16 00:00:00
cve
cve
CVE-2018-12326
2018-06-17 14:29:00
cvelist
cvelist
CVE-2018-12326
2018-06-17 14:00:00
zdt
zdt
Redis-cli < 5.0 - Buffer Overflow Exploit
2018-06-19 00:00:00
exploitdb
exploitdb
Redis-cli < 5.0 - Buffer Overflow (PoC)
2018-06-18 00:00:00
nessus
nessus
Pivotal Software Redis LUA < 3.2.12 / 4.0.x < 4.0.10 / 5.0 < 5.0rc2 Multiple Vulnerabilities
2018-09-14 00:00:00
RHEL 7 : redis (RHSA-2019:0052)
2024-04-27 00:00:00
RHEL 6 / 7 : rh-redis32-redis (RHSA-2019:1860)
2024-04-27 00:00:00
debian
debian
[SECURITY] [DLA DLA-1396-1] redis security update
2018-06-26 16:07:53
redhat
redhat
(RHSA-2019:0052) Moderate: redis security update
2019-01-16 16:51:00
(RHSA-2019:0094) Moderate: redis security update
2019-01-16 17:06:31
(RHSA-2019:1860) Important: rh-redis32-redis security update
2019-07-25 15:55:00
ibm
ibm
thn
thn
Critical Flaws Reported in Philips Vue PACS Medical Imaging Systems
2021-07-09 07:00:00
ics
ics
Philips Vue PACS (Update C)
2023-02-21 12:00:00