valkey (AlmaLinux:10) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:10 package valkey, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (10)
CVE-2025-49844 — CVSS 9.9 (critical): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2025-67733 — CVSS 8.5 (high): Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious user can use scripting commands…
CVE-2025-21605 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated…
CVE-2025-48367 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. An unauthenticated connection can cause repeated IP protocol errors…
CVE-2026-21863 — CVSS 7.5 (high): Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious actor with access to the Valkey…
CVE-2025-32023 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated…
CVE-2025-46817 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2025-46819 — CVSS 6.3 (medium): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2025-46818 — CVSS 6.0 (medium): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2025-27151 — CVSS 4.7 (medium): Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based buffer…