VDB
CVE-2023-41053
CVE-2023-41053
PUBLISHED
Redis SORT_RO may bypass ACL configuration
EPSS 0.82% · 74.7th percentile
Risk Scores
EPSS Score
0.82%
74.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | keydb | 7.2.0, 7.0.0 |
| Bitnami | redis | 7.2.0, 7.0.0 |
| Bitnami | keydb | 7.2.0, 7.2.0, 7.0.0 |
| Bitnami | valkey | 7.2.0, 7.0.0 |
| Bitnami | valkey | 7.2.0, 7.0.0, 7.2.0 |
| Bitnami | redis | 7.0.0, 7.2.0, 7.0.0 |
Timeline
- Sep 6, 2023 CVE Published
- Sep 7, 2023 EPSS Score
- Oct 10, 2023 EPSS Score
- Nov 11, 2023 EPSS Score
- Dec 14, 2023 EPSS Score
- Jan 15, 2024 EPSS Score
- Feb 17, 2024 EPSS Score
- Mar 20, 2024 EPSS Score
- Apr 22, 2024 EPSS Score
- May 24, 2024 EPSS Score
- Jun 26, 2024 EPSS Score
- Jul 29, 2024 EPSS Score
References
- https://github.com/redis/redis/commit/9e505e6cd842338424e05883521ca1fb7d0f47f6 url
- https://github.com/redis/redis/security/advisories/GHSA-q4jr-5p56-4xwc url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OLBPIUUD273UGRN2WAYHPVUAULY36QVL/ url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UA4MSJ623BH6HP5UHSJD2FOTN3QM5DQS/ url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YLYNYT52EHR63E7L7SHRTHEPUMAFFDLX/ url
- https://nvd.nist.gov/vuln/detail/CVE-2023-41053 url