CVE-2023-47004

Buffer Overflow vulnerability in Redis RedisGraph v.2.x through v.2.12.8 and fixed in v.2.12.9 allows an attacker to execute arbitrary code via the code logic after valid authentication.
References
Link Resource
https://github.com/RedisGraph/RedisGraph/issues/3178 Exploit Issue Tracking Vendor Advisory
https://github.com/RedisGraph/RedisGraph/issues/3178 Exploit Issue Tracking Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:redislabs:redisgraph:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:29

Type Values Removed Values Added
References () https://github.com/RedisGraph/RedisGraph/issues/3178 - Exploit, Issue Tracking, Vendor Advisory () https://github.com/RedisGraph/RedisGraph/issues/3178 - Exploit, Issue Tracking, Vendor Advisory

16 Nov 2023, 17:36

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8
References (MISC) https://github.com/RedisGraph/RedisGraph/issues/3178 - (MISC) https://github.com/RedisGraph/RedisGraph/issues/3178 - Exploit, Issue Tracking, Vendor Advisory
First Time Redislabs redisgraph
Redislabs
CWE CWE-787
CPE cpe:2.3:a:redislabs:redisgraph:*:*:*:*:*:*:*:*

06 Nov 2023, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-06 22:15

Updated : 2024-11-21 08:29


NVD link : CVE-2023-47004

Mitre link : CVE-2023-47004

CVE.ORG link : CVE-2023-47004


JSON object : View

Products Affected

redislabs

  • redisgraph
CWE
CWE-787

Out-of-bounds Write