VDB
BIT-keydb-2025-32023
BIT-keydb-2025-32023
PUBLISHED
CVSS 7.800000190734863 HIGH
Redis allows out of bounds writes in hyperloglog commands leading to RCE
Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | keydb | 2.8.0, 7.0.0, 8.0.0 |
Timeline
- Oct 16, 2025 CVE Published
- Jan 3, 2026 PoC Published
- Feb 5, 2026 CVE Updated
References
- https://github.com/redis/redis/commit/50188747cbfe43528d2719399a2a3c9599169445 url
- https://github.com/redis/redis/releases/tag/6.2.19 url
- https://github.com/redis/redis/releases/tag/7.2.10 url
- https://github.com/redis/redis/releases/tag/7.4.5 url
- https://github.com/redis/redis/releases/tag/8.0.3 url
- https://github.com/redis/redis/security/advisories/GHSA-rp2m-q4j6-gr43 url
- https://nvd.nist.gov/vuln/detail/CVE-2025-32023 url
- https://www.exploit-db.com/exploits/52477 url