cve/CVE-2022-31144.md at 43553e9af13bbdba84028635c21659dede3160a7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

Redis is an in-memory database that persists on disk. A specially crafted XAUTOCLAIM command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. This problem affects versions on the 7.x branch prior to 7.0.4. The patch is released in version 7.0.4.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/SpiralBL0CK/CVE-2022-31144
https://github.com/k0mi-tg/CVE-POC
https://github.com/manas3c/CVE-POC
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/whoforget/CVE-POC
https://github.com/youwizard/CVE-POC

1.0 KiB Raw Blame History

CVE-2022-31144

Description

POC

Reference

Github

1.0 KiB

Raw Blame History