cbcvebase.
CVE-2022-36021
published 2023-03-01

CVE-2022-36021: Redis is an in-memory database that persists on disk. Authenticated users can use string matching commands (like `SCAN` or `KEYS`) with a specially crafted…

PriorityP342medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EPSS
59.71%
99.0th percentile
Redis is an in-memory database that persists on disk. Authenticated users can use string matching commands (like `SCAN` or `KEYS`) with a specially crafted pattern to trigger a denial-of-service attack on Redis, causing it to hang and consume 100% CPU time. The problem is fixed in Redis versions 6.0.18, 6.2.11, 7.0.9.

Affected

17 ranges
VendorProductVersion rangeFixed in
debianredis< redis 5:7.0.9-1 (bookworm)redis 5:7.0.9-1 (bookworm)
msrccbl2_redis_6.2.11-1_on_cbl_mariner_2.0
msrccm1_redis_6.2.11-1_on_cbl_mariner_1.0
redisredis< 6.0.186.0.18
redisredis
redisredis
redisredis>= 0 < 5:6.0.16-1+deb11u35:6.0.16-1+deb11u3
redisredis>= 0 < 5:7.0.9-15:7.0.9-1
redisredis>= 0 < 5:7.0.9-15:7.0.9-1
redisredis>= 0 < 5:7.0.9-15:7.0.9-1
redisredis>= 0 < 2:2.8.4-2ubuntu0.2+esm32:2.8.4-2ubuntu0.2+esm3
redisredis>= 0 < 2:3.0.6-1ubuntu0.4+esm22:3.0.6-1ubuntu0.4+esm2
redisredis>= 0 < 5:4.0.9-1ubuntu0.2+esm45:4.0.9-1ubuntu0.2+esm4
redisredis>= 0 < 5:5.0.7-2ubuntu0.1+esm25:5.0.7-2ubuntu0.1+esm2
redisredis>= 0 < 5:6.0.16-1ubuntu1+esm15:6.0.16-1ubuntu1+esm1
redisredis>= 6.2.0 < 6.2.116.2.11
redisredis>= 7.0.0 < 7.0.97.0.9

Detection & IOCsextracted from sources · hover to see the quote

  • Detect use of string matching commands (SCAN or KEYS) with a specially crafted pattern that causes Redis to hang and consume 100% CPU time, indicative of CVE-2022-36021 exploitation.
  • Monitor Redis CPU utilization for sustained 100% usage, which may indicate active exploitation of this DoS vulnerability via crafted pattern matching commands.
  • ·Only authenticated users can trigger this vulnerability; unauthenticated access to Redis is required to be blocked as a baseline. The vulnerability affects Redis versions prior to 6.0.18, 6.2.11, and 7.0.9.
  • ·Red Hat Enterprise Linux 9 ships a Redis package assessed as Not Affected. Red Hat OpenStack Platform 13 (Queens) is out of support scope. rh-redis6-redis (Red Hat Software Collections) will not be fixed.

CVSS provenance

nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv8.8HIGH
vendor_ubuntu7.0HIGH
vendor_debian5.5MEDIUM
vendor_msrc5.5MEDIUM
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.