redis-devel (AlmaLinux:9) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:9 package redis-devel, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (21)
CVE-2025-49844 — CVSS 9.9 (critical): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2026-25243 — CVSS 8.8 (high): Redis is an in-memory data structure store. In versions of redis-server up to 8.6.3, the RESTORE command does not properly validate…
CVE-2026-23479 — CVSS 8.8 (high): Redis is an in-memory data structure store. In redis-server from 7.2.0 until 8.6.3, the unblock client flow does not handle an error return…
CVE-2026-23631 — CVSS 8.1 (high): Redis is an in-memory data structure store. In all versions of redis-server with Lua scripting, an authenticated attacker can exploit the…
CVE-2025-21605 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated…
CVE-2025-48367 — CVSS 7.5 (high): Redis is an open source, in-memory database that persists on disk. An unauthenticated connection can cause repeated IP protocol errors…
CVE-2022-24834 — CVSS 7.0 (high): Redis is an in-memory database that persists on disk. A specially crafted Lua script executing in Redis can trigger a heap overflow in the…
CVE-2024-31449 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to trigger…
CVE-2024-46981 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to…
CVE-2025-46817 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2025-32023 — CVSS 7.0 (high): Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated…
CVE-2025-46819 — CVSS 6.3 (medium): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2025-46818 — CVSS 6.0 (medium): Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially…
CVE-2024-31228 — CVSS 5.5 (medium): Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially…
CVE-2025-27151 — CVSS 4.7 (medium): Redis is an open source, in-memory database that persists on disk. In versions starting from 7.0.0 to before 8.0.2, a stack-based buffer…
CVE-2024-51741 — CVSS 4.4 (medium): Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL…
CVE-2024-31227 — CVSS 4.4 (medium): Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL…
CVE-2022-24735 — CVSS 3.9 (low): Redis is an in-memory database that persists on disk. By exploiting weaknesses in the Lua script execution environment, an attacker with…
CVE-2023-45145 — CVSS 3.6 (low): Redis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions…
CVE-2023-41053 — CVSS 3.3 (low): Redis is an in-memory database that persists on disk. Redis does not correctly identify keys accessed by `SORT_RO` and as a result may…
CVE-2022-24736 — CVSS 3.3 (low): Redis is an in-memory database that persists on disk. Prior to versions 6.2.7 and 7.0.0, an attacker attempting to load a specially crafted…