ID de Prueba:	1.3.6.1.4.1.25623.1.0.113812
Categoría:	Databases
Título:	Redis < 6.0.3 Integer Overflow Vulnerability
Resumen:	Redis is prone to an integer overflow vulnerability.
Descripción:	Summary: Redis is prone to an integer overflow vulnerability. Vulnerability Insight: The vulnerability exists in the getnum function in lua_struct.c. Vulnerability Impact: Successful exploitation would allow an attacker to bypass sandbox restrictions or crash the application. Affected Software/OS: Redis through version 6.0.2. Solution: Update to version 6.0.3 or later. CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2020-14147 Debian Security Information: DSA-4731 (Google Search) https://www.debian.org/security/2020/dsa-4731 https://security.gentoo.org/glsa/202008-17 https://github.com/antirez/redis/commit/ef764dde1cca2f25d00686673d1bc89448819571 https://github.com/antirez/redis/pull/6875 https://www.oracle.com/security-alerts/cpujan2021.html SuSE Security Announcement: openSUSE-SU-2020:1035 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00058.html
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.