VYPR
Unrated severityNVD Advisory· Published Mar 20, 2023· Updated Feb 25, 2025

Specially crafted MSETNX command can lead to denial-of-service

CVE-2023-28425

Description

Redis is an in-memory database that persists on disk. Starting in version 7.0.8 and prior to version 7.0.10, authenticated users can use the MSETNX command to trigger a runtime assertion and termination of the Redis server process. The problem is fixed in Redis version 7.0.10.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.