cbcvebase.
CVE-2016-2121
published 2018-10-31

CVE-2016-2121: A permissions flaw was found in redis, which sets weak permissions on certain files and directories that could potentially contain sensitive information. A…

medium5.5CVSS 3.0
AVLACLPRLUINSUCHINAN
A permissions flaw was found in redis, which sets weak permissions on certain files and directories that could potentially contain sensitive information. A local, unprivileged user could possibly use this flaw to access unauthorized system information.

Affected

6 ranges
VendorProductVersion rangeFixed in
debianredis< redis 3:3.2.5-2 (bookworm)redis 3:3.2.5-2 (bookworm)
redhatopenstack
redisredis>= 0 < 3:3.2.5-23:3.2.5-2
redisredis>= 0 < 3:3.2.5-23:3.2.5-2
redisredis>= 0 < 3:3.2.5-23:3.2.5-2
redisredis>= 0 < 3:3.2.5-23:3.2.5-2

CVSS provenance

nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
osv5.5MEDIUM