CVE-2022-31144
published 2022-07-19CVE-2022-31144: Redis is an in-memory database that persists on disk. A specially crafted `XAUTOCLAIM` command on a stream key in a specific state may result with heap…
PriorityP258high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
2.38%
81.8th percentile
Redis is an in-memory database that persists on disk. A specially crafted `XAUTOCLAIM` command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. This problem affects versions on the 7.x branch prior to 7.0.4. The patch is released in version 7.0.4.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | redis | < redis 5:7.0.4-1 (bookworm) | redis 5:7.0.4-1 (bookworm) |
| msrc | cbl2_redis_6.2.9-1_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_redis_6.2.9-1_on_cbl_mariner_1.0 | — | — |
| redis | redis | — | — |
| redis | redis | >= 0 < 5:7.0.4-1 | 5:7.0.4-1 |
| redis | redis | >= 0 < 5:7.0.4-1 | 5:7.0.4-1 |
| redis | redis | >= 0 < 5:7.0.4-1 | 5:7.0.4-1 |
| redis | redis | >= 7.0 < 7.0.4 | 7.0.4 |
Detection & IOCsextracted from sources · hover to see the quote
- →The vulnerability is triggered by a specially crafted XAUTOCLAIM command sent to a Redis stream key in a specific state, resulting in a heap overflow. Monitor for unusual or malformed XAUTOCLAIM commands on Redis instances. ↗
- →Only Redis versions 7.0.0 through 7.0.3 are affected. Redis 6.x instances are NOT vulnerable. Focus detection and patching efforts on Redis 7.x deployments. ↗
- →The flaw is a heap-based buffer overflow within the XAUTOCLAIM command implementation. Look for heap corruption indicators or crashes in Redis 7.x processes following XAUTOCLAIM usage. ↗
- ·Only Redis 7.x versions prior to 7.0.4 are affected. Redis 6.x is not vulnerable. Ensure patched version 7.0.4 or later is deployed to remediate. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian7.0HIGH
vendor_msrc7.0HIGH
vendor_redhat7.0HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
redis: heap overflow via XAUTOCLAIM command
vendor_redhat·2022-07-19·CVSS 7.0
CVE-2022-31144 [HIGH] CWE-122 redis: heap overflow via XAUTOCLAIM command
redis: heap overflow via XAUTOCLAIM command
Redis is an in-memory database that persists on disk. A specially crafted `XAUTOCLAIM` command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. This problem affects versions on the 7.x branch prior to 7.0.4. The patch is released in version 7.0.4.
A heap-based buffer overflow flaw was found in Redis within the XAUTOCLAIM command implementation. This flaw allows an attacker to craft the XAUTOCLAIM command with malicious data on a stream key in a specific state that triggers a heap-based buffer overflow, possibly enabling remote code execution.
Statement: The vulnerable code was introduced in Redis v7.0.0 and affects only Redis v7.0.0 and higher versions. Hence, Red Hat Enterprise Linux -
Microsoft
Potential heap overflow in Redis
vendor_msrc·2022-07-12·CVSS 7.0
CVE-2022-31144 [HIGH] CWE-122 Potential heap overflow in Redis
Potential heap overflow in Redis
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
GitHub_M: GitHub_M
Customer Action Required: Yes
Remediation: CBL-Mariner Releases
Reference: https://learn.microsoft.com/en
Debian
CVE-2022-31144: redis - Redis is an in-memory database that persists on disk. A specially crafted `XAUTO...
vendor_debian·2022·CVSS 7.0
CVE-2022-31144 [HIGH] CVE-2022-31144: redis - Redis is an in-memory database that persists on disk. A specially crafted `XAUTO...
Redis is an in-memory database that persists on disk. A specially crafted `XAUTOCLAIM` command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. This problem affects versions on the 7.x branch prior to 7.0.4. The patch is released in version 7.0.4.
Scope: local
bookworm: resolved (fixed in 5:7.0.4-1)
bullseye: resolved
forky: resolved (fixed in 5:7.0.4-1)
sid: resolved (fixed in 5:7.0.4-1)
trixie: resolved (fixed in 5:7.0.4-1)
OSV
CVE-2022-31144: Redis is an in-memory database that persists on disk
osv·2022-07-19·CVSS 8.8
CVE-2022-31144 [HIGH] CVE-2022-31144: Redis is an in-memory database that persists on disk
Redis is an in-memory database that persists on disk. A specially crafted `XAUTOCLAIM` command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. This problem affects versions on the 7.x branch prior to 7.0.4. The patch is released in version 7.0.4.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/redis/redis/releases/tag/7.0.4https://github.com/redis/redis/security/advisories/GHSA-96f7-42fg-2jrhhttps://security.gentoo.org/glsa/202209-17https://security.netapp.com/advisory/ntap-20220909-0002/https://github.com/redis/redis/releases/tag/7.0.4https://github.com/redis/redis/security/advisories/GHSA-96f7-42fg-2jrhhttps://security.gentoo.org/glsa/202209-17https://security.netapp.com/advisory/ntap-20220909-0002/
2022-07-19
Published