CVE-2020-21468
published 2021-09-20CVE-2020-21468: A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a…
PriorityP434high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.21%
64.7th percentile
A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a released version, such as 5.0.7
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | redis | — | — |
| redislabs | redis | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_debian7.5LOW
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vjmv-w2p6-c95q: A segmentation fault in the redis-server component of Redis 5
ghsa_unreviewed·2022-05-24
CVE-2020-21468 [HIGH] GHSA-vjmv-w2p6-c95q: A segmentation fault in the redis-server component of Redis 5
A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS).
OSV
CVE-2020-21468: ** DISPUTED ** A segmentation fault in the redis-server component of Redis 5
osv·2021-09-20·CVSS 7.5
CVE-2020-21468 [HIGH] CVE-2020-21468: ** DISPUTED ** A segmentation fault in the redis-server component of Redis 5
** DISPUTED ** A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a released version, such as 5.0.7.
OSV
CVE-2020-21468: A segmentation fault in the redis-server component of Redis 5
osv·2021-09-20·CVSS 7.5
CVE-2020-21468 [HIGH] CVE-2020-21468: A segmentation fault in the redis-server component of Redis 5
A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a released version, such as 5.0.7
Red Hat
redis: Segmentation fault in the redis-server component
vendor_redhat·2021-09-20·CVSS 7.5
CVE-2020-21468 [HIGH] CWE-119 redis: Segmentation fault in the redis-server component
redis: Segmentation fault in the redis-server component
A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a released version, such as 5.0.7
Package: redis (Red Hat 3scale API Management Platform 2) - Not affected
Package: redis (Red Hat Advanced Cluster Management for Kubernetes 2) - Not affected
Package: redis (Red Hat Ansible Automation Platform 1.2) - Not affected
Package: redis (Red Hat Ansible Tower 3) - Not affected
Package: redis:5/redis (Red Hat Enterprise Linux 8) - Not affected
Package: redis:6/redis (Red Hat Enterprise Linux 8) - Not affected
Package: redis (Red Hat Enterprise Linux 9) - Not affected
Package: redis (Red Hat OpenStack Platform 10 (Newton)) - Not affected
Debian
CVE-2020-21468: redis - A segmentation fault in the redis-server component of Redis 5.0.7 leads to a den...
vendor_debian·2020·CVSS 7.5
CVE-2020-21468 [HIGH] CVE-2020-21468: redis - A segmentation fault in the redis-server component of Redis 5.0.7 leads to a den...
A segmentation fault in the redis-server component of Redis 5.0.7 leads to a denial of service (DOS). NOTE: the vendor cannot reproduce this issue in a released version, such as 5.0.7
Scope: local
bookworm: open
bullseye: open
forky: open
sid: open
trixie: open
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2021-09-20
Published