CVE-2023-28425 — Command Injection in Redis

CWE-77 — Command Injection CWE-617 — Reachable Assertion5 documents5 sources

Severity

5.5MEDIUMNVD

EPSS

45.3%

top 2.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redis Debian Redis Msrc Cbl2 Redis 6.2.12-1 ON CBL Mariner 2.0 +5 more

Timeline

PublishedMar 20

Description

Redis is an in-memory database that persists on disk. Starting in version 7.0.8 and prior to version 7.0.10, authenticated users can use the MSETNX command to trigger a runtime assertion and termination of the Redis server process. The problem is fixed in Redis version 7.0.10.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages10 packages

▶NVDredis/redis7.0.8 — 7.0.10

▶debiandebian/redis< redis 5:7.0.10-1 (bookworm)

▶Debianredis/redis< 5:7.0.10-1+2

▶CVEListV5redis/redis>= 7.0.8, < 7.0.10

▶msrcmsrc/cm1_redis_6.2.11-1_on_cbl_mariner_1.0

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

CVE-2023-28425: Redis is an in-memory database that persists on disk↗2023-03-20

▶

📋Vendor Advisories

Red Hat

redis: Specially crafted MSETNX command can lead to denial-of-service↗2023-03-20

▶

Microsoft

Specially crafted MSETNX command can lead to denial-of-service↗2023-03-14

▶

Debian

CVE-2023-28425: redis - Redis is an in-memory database that persists on disk. Starting in version 7.0.8 ...↗2023

▶