VYPR
High severity7.5NVD Advisory· Published Apr 13, 2016· Updated Jun 17, 2026

CVE-2015-8080

CVE-2015-8080

Description

Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number, which triggers a stack-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.