CVE-2025-46819
published 2025-10-03CVE-2025-46819: Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script…
PriorityP340high7.1CVSS 3.1
AVLACLPRLUINSUCHINAH
EXPLOIT
EPSS
1.02%
59.2th percentile
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua scripting. This issue is fixed in version 8.2.2. To workaround this issue without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to block a script by restricting both the EVAL and FUNCTION command families.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | redict | < redict 7.3.6+ds-1 (forky) | redict 7.3.6+ds-1 (forky) |
| debian | redis | < redict 7.3.6+ds-1 (forky) | redict 7.3.6+ds-1 (forky) |
| debian | valkey | < redict 7.3.6+ds-1 (forky) | redict 7.3.6+ds-1 (forky) |
| lfprojects | valkey | >= 0 < 8.1.1+dfsg1-3+deb13u1 | 8.1.1+dfsg1-3+deb13u1 |
| lfprojects | valkey | >= 0 < 8.1.4+dfsg1-1 | 8.1.4+dfsg1-1 |
| lfprojects | valkey | >= 0 < 7.2.11+dfsg1-0ubuntu0.2 | 7.2.11+dfsg1-0ubuntu0.2 |
| lfprojects | valkey | >= 0 < 8.1.4+dfsg1-0ubuntu0.2 | 8.1.4+dfsg1-0ubuntu0.2 |
| msrc | azl3_ceph_18.2.2-10_on_azure_linux_3.0 | — | — |
| msrc | azl3_kernel_6.6.47.1-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_kernel_6.6.51.1-5_on_azure_linux_3.0 | — | — |
| msrc | azl3_valkey_8.0.4-1_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_ceph_16.2.10-9_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_kernel_5.15.164.1-1_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_kernel_5.15.167.1-1_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_redis_6.2.18-3_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_redis_6.2.20-1_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| redis | redis | < 8.2.2 | 8.2.2 |
| redis | redis | < 6.2.20 | 6.2.20 |
| redis | redis | >= 0 < 5:6.0.16-1+deb11u8 | 5:6.0.16-1+deb11u8 |
| redis | redis | >= 0 < 5:7.0.15-1~deb12u6 | 5:7.0.15-1~deb12u6 |
| redis | redis | >= 0 < 5:8.0.2-3+deb13u1 | 5:8.0.2-3+deb13u1 |
CVSS provenance
nvdv3.17.1HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
osv8.8HIGH
vendor_ubuntu7.0HIGH
vendor_debian6.3MEDIUM
vendor_msrc6.3MEDIUM
vendor_redhat6.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Schneider Electric Plant iT/Brewmaxx
cisa_ics·2026-03-24·CVSS 7.0
[HIGH] Schneider Electric Plant iT/Brewmaxx
ICS Advisory
##
Schneider Electric Plant iT/Brewmaxx
Release DateMarch 24, 2026
Alert CodeICSA-26-083-03
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## Summary
Successful exploitation of these vulnerabilities could risk privilege escalation, which could result in remote code execution.
The following versions of Schneider Electric Plant iT/Brewmaxx are affected:
- Plant iT/Brewmaxx 9.60_and_above (CVE-2025-49844, CVE-2025-46817, CVE-2025-46818, CVE-2025-46819)
CVSS
Vendor
Equipment
Vulnerabilities
| v3 9.9
| Schneider Electric
| Schneider Electric Plant iT/Brewmaxx
| Use After Free, Integer Overflow or Wraparound, Improper Control of Generation of Code ('Code Injection')
## Background
- Critical Infrast
Ubuntu
Valkey vulnerabilities
vendor_ubuntu·2025-11-26·CVSS 7.0
CVE-2025-46818 [HIGH] Valkey vulnerabilities
Title: Valkey vulnerabilities
Summary: Several security issues were fixed in Valkey.
Benny Isaacs, Nir Brakha, and Sagi Tzadik discovered that Valkey incorrectly
handled memory when running Lua scripts. An authenticated attacker could
use this vulnerability to trigger a use-after-free condition, and
potentially achieve remote code execution on the Valkey server.
(CVE-2025-49844)
It was discovered that Valkey incorrectly handled memory when running Lua
scripts. An authenticated attacker could use this vulnerability to trigger
a integer overflow condition, and potentially achieve remote code execution
on the Valkey server. (CVE-2025-46817)
It was discovered that Valkey incorrectly handled Lua objects. An
authenticated attacker could possibly use this issue to escalate their
privileges. (
Microsoft
Redis is vulnerable to DoS via specially crafted LUA scripts
vendor_msrc·2025-10-14·CVSS 6.3
CVE-2025-46819 [MEDIUM] CWE-190 Redis is vulnerable to DoS via specially crafted LUA scripts
Redis is vulnerable to DoS via specially crafted LUA scripts
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
GitHub_M: GitHub_M
Customer Action Required: Yes
Remediation: CBL-Mariner Releases
Reference: ht
Red Hat
Redis: Redis is vulnerable to DoS via specially crafted LUA scripts
vendor_redhat·2025-10-03·CVSS 6.3
CVE-2025-46819 [MEDIUM] CWE-190 Redis: Redis is vulnerable to DoS via specially crafted LUA scripts
Redis: Redis is vulnerable to DoS via specially crafted LUA scripts
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua scripting. This issue is fixed in version 8.2.2. To workaround this issue without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to block a script by restricting both the EVAL and FUNCTION command families.
A vulnerability was found in Redis where an authenticated user to run a crafted Lua script that can read out‑of‑bounds memory or crash the server, leading to informati
Debian
CVE-2025-46819: redict - Redis is an open source, in-memory database that persists on disk. Versions 8.2....
vendor_debian·2025·CVSS 6.3
CVE-2025-46819 [MEDIUM] CVE-2025-46819: redict - Redis is an open source, in-memory database that persists on disk. Versions 8.2....
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua scripting. This issue is fixed in version 8.2.2. To workaround this issue without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to block a script by restricting both the EVAL and FUNCTION command families.
Scope: local
forky: resolved (fixed in 7.3.6+ds-1)
sid: resolved (fixed in 7.3.6+ds-1)
Microsoft
drm/amdgpu: the warning dereferencing obj for nbio_v7_4
vendor_msrc·2024-09-10·CVSS 5.5
CVE-2024-46819 [MEDIUM] CWE-476 drm/amdgpu: the warning dereferencing obj for nbio_v7_4
drm/amdgpu: the warning dereferencing obj for nbio_v7_4
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
Linux: Linux
Customer Action Required: Yes
Remediation: CBL-Mariner Releases
Reference: https://learn
OSV
valkey vulnerabilities
osv·2025-11-26·CVSS 8.8
CVE-2025-49844 [HIGH] valkey vulnerabilities
valkey vulnerabilities
Benny Isaacs, Nir Brakha, and Sagi Tzadik discovered that Valkey incorrectly
handled memory when running Lua scripts. An authenticated attacker could
use this vulnerability to trigger a use-after-free condition, and
potentially achieve remote code execution on the Valkey server.
(CVE-2025-49844)
It was discovered that Valkey incorrectly handled memory when running Lua
scripts. An authenticated attacker could use this vulnerability to trigger
a integer overflow condition, and potentially achieve remote code execution
on the Valkey server. (CVE-2025-46817)
It was discovered that Valkey incorrectly handled Lua objects. An
authenticated attacker could possibly use this issue to escalate their
privileges. (CVE-2025-46818)
It was discovered that Valkey incorrectly hand
OSV
CVE-2025-46819: Redis is an open source, in-memory database that persists on disk
osv·2025-10-03·CVSS 7.1
CVE-2025-46819 [HIGH] CVE-2025-46819: Redis is an open source, in-memory database that persists on disk
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua scripting. This issue is fixed in version 8.2.2. To workaround this issue without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to block a script by restricting both the EVAL and FUNCTION command families.
No detection rules found.
Nuclei
Redis < 8.2.1 Lua Long-String Delimiter - Out-of-Bounds Read
nuclei·CVSS 7.1
CVE-2025-46819 [HIGH] Redis < 8.2.1 Lua Long-String Delimiter - Out-of-Bounds Read
Redis < 8.2.1 Lua Long-String Delimiter - Out-of-Bounds Read
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua scripting. This issue is fixed in version 8.2.2. To workaround this issue without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to block a script by restricting both the EVAL and FUNCTION command families.
Template:
id: CVE-2025-46819
info:
name: Redis < 8.2.1 Lua Long-String Delimiter - Out-of-Bounds Read
author: pussycat0x
severity: high
description: |
Redis is an open sour
Bugzilla
CVE-2025-46819 Redis: Redis is vulnerable to DoS via specially crafted LUA scripts
bugzilla·2025-10-03·CVSS 7.1
CVE-2025-46819 [HIGH] CVE-2025-46819 Redis: Redis is vulnerable to DoS via specially crafted LUA scripts
CVE-2025-46819 Redis: Redis is vulnerable to DoS via specially crafted LUA scripts
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua scripting. This issue is fixed in version 8.2.2. To workaround this issue without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to block a script by restricting both the EVAL and FUNCTION command families.
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2025:19238 https://access.redhat.com/errata/
Bleepingcomputer
Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 172 flaws
blogs_bleepingcomputer·2025-10-14·CVSS 7.8
[HIGH] Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 172 flaws
## Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 172 flaws
## Lawrence Abrams
80 Elevation of Privilege Vulnerabilities
11 Security Feature Bypass Vulnerabilities
31 Remote Code Execution Vulnerabilities
28 Information Disclosure Vulnerabilities
11 Denial of Service Vulnerabilities
10 Spoofing Vulnerabilities
When BleepingComputer reports on the Patch Tuesday security updates, we only count those released today by Microsoft. Therefore, the number of flaws does not include those fixed in Azure, Mariner, Microsoft Edge, and other vulnerabilities earlier this month.
Notably, Windows 10 reaches the end of support today , with this being the last Patch Tuesday where Microsoft provides free security updates to the venerable operating system.
To continue receiving security upd
Wiz
CVE-2026-21863 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.5
CVE-2026-21863 [HIGH] CVE-2026-21863 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-21863 :
Redis vulnerability analysis and mitigation
Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious actor with access to the Valkey clusterbus port can send an invalid packet that may cause an out bound read, which might result in the system crashing. The Valkey clusterbus packet processing code does not validate that a clusterbus ping extension packet is located within buffer of the clusterbus packet before attempting to read it. Versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12 fix the issue. As an additional mitigation, don't expose the cluster bus connection directly to end users, and protect the connection with its own network ACLs.
Source : NVD
## 7.5
Score
Published February 23, 2026
Severity HIGH
CNA Score 7.5
Wiz
CVE-2025-67733 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.5
CVE-2025-67733 [HIGH] CVE-2025-67733 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-67733 :
Redis vulnerability analysis and mitigation
Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious user can use scripting commands to inject arbitrary information into the response stream for the given client, potentially corrupting or returning tampered data to other users on the same connection. The error handling code for lua scripts does not properly handle null characters. Versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12 fix the issue.
Source : NVD
## 7.1
Score
Published February 23, 2026
Severity HIGH
CNA Score 8.5
Affected Technologies
Redis
Rocky Linux
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 5.2
Exploita
https://github.com/redis/redis/commit/3a1624da2449ac3dbfc4bdaed43adf77a0b7bfbahttps://github.com/redis/redis/releases/tag/8.2.2https://github.com/redis/redis/security/advisories/GHSA-4c68-q8q8-3g4fhttps://www.vicarius.io/vsociety/posts/cve-2025-46819-detect-redis-vulnerabilityhttps://www.vicarius.io/vsociety/posts/cve-2025-46819-mitigate-redis-vulnerability
2025-10-03
Published