CVE-2025-46686 - Redis Memory Allocation Vulnerability

CVE ID : CVE-2025-46686
Published : July 23, 2025, 7:15 p.m. | 1 hour, 44 minutes ago
Description : Redis through 7.4.3 allows memory consumption via a multi-bulk command composed of many bulks, sent by an authenticated user. This occurs because the server allocates memory for the command arguments of every bulk, even when the command is skipped because of insufficient permissions.
Severity: 4.9 | MEDIUM

Post a Comment

Please Select Embedded Mode To Show The Comment System.*

Previous Post Next Post