Redislabs: >> Redisgraph Security Vulnerabilities
An issue in RedisGraph v.2.12.10 allows an attacker to execute arbitrary code and cause a denial of service via a crafted string in DataBlock_ItemIsDeleted.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-11-16
Buffer Overflow vulnerability in Redis RedisGraph v.2.x through v.2.12.8 and fixed in v.2.12.9 allows an attacker to execute arbitrary code via the code logic after valid authentication.
CVSS Score
8.8
EPSS Score
0.004
Published
2023-11-06
RedisGraph 2.x through 2.2.11 has a NULL Pointer Dereference that leads to a server crash because it mishandles an unquoted string, such as an alias that has not yet been introduced.
CVSS Score
7.5
EPSS Score
0.003
Published
2020-12-23