redis-doc (AlmaLinux:8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:8 package redis-doc, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (26)
CVE-2025-49844 — CVSS 9.9 (critical): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2026-25243 — CVSS 8.8 (high): Redis is an in-memory data structure store. In versions of redis-server up to 8.6.3, the RESTORE command does not properly validate…
CVE-2021-32628 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. An integer overflow bug in the ziplist data structure used by all…
CVE-2021-32675 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. When parsing an incoming Redis Standard Protocol (RESP) request, Redis…
CVE-2021-32687 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. An integer overflow bug affecting all versions of Redis can be exploited…
CVE-2021-41099 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. An integer overflow bug in the underlying string library can be used to…
CVE-2021-32626 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis…
CVE-2021-32627 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. In affected versions an integer overflow bug in Redis can be exploited…
CVE-2025-21605 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated…
CVE-2025-48367 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. An unauthenticated connection can cause repeated IP protocol errors…
CVE-2025-46817 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2022-24834 — CVSS 7.0 (high): Redis is an in-memory database that persists on disk. A specially crafted Lua script executing in Redis can trigger a heap overflow in the…
CVE-2024-31449 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to trigger…
CVE-2025-32023 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated…
CVE-2024-46981 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to…
CVE-2025-46819 — CVSS 6.3 (medium): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2025-46818 — CVSS 6.0 (medium): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2022-36021 — CVSS 5.5 (medium): Redis is an in-memory database that persists on disk. Authenticated users can use string matching commands (like `SCAN` or `KEYS`) with a…
CVE-2023-22458 — CVSS 5.5 (medium): Redis is an in-memory database that persists on disk. Authenticated users can issue a `HRANDFIELD` or `ZRANDMEMBER` command with specially…
CVE-2023-25155 — CVSS 5.5 (medium): Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted `SRANDMEMBER`, `ZRANDMEMBER`, and…
CVE-2023-28856 — CVSS 5.5 (medium): Redis is an open source, in-memory database that persists on disk. Authenticated users can use the `HINCRBYFLOAT` command to create an…
CVE-2024-31228 — CVSS 5.5 (medium): Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially…
CVE-2022-35977 — CVSS 5.5 (medium): Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted `SETRANGE` and `SORT(_RO)` commands can…
CVE-2022-24735 — CVSS 3.9 (low): Redis is an in-memory database that persists on disk. By exploiting weaknesses in the Lua script execution environment, an attacker with…
CVE-2023-45145 — CVSS 3.6 (low): Redis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions…
CVE-2022-24736 — CVSS 3.3 (low): Redis is an in-memory database that persists on disk. Prior to versions 6.2.7 and 7.0.0, an attacker attempting to load a specially crafted…