Low severity3.3NVD Advisory· Published Apr 17, 2025· Updated Jun 17, 2026
CVE-2025-26269
CVE-2025-26269
Description
DragonflyDB Dragonfly through 1.28.2 (fixed in 1.29.0) allows authenticated users to cause a denial of service (daemon crash) via a Lua library command that references a large negative integer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.28.2+ 1 more
- (no CPE)range: <=1.28.2
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
3- github.com/dragonflydb/dragonfly/commit/4612aec9a78e3f604e6fb19bee51acde89723308nvdPatch
- gist.github.com/ankki-zsyang/d8215cf6e868d07546eaa5346a884ebdnvdExploitThird Party Advisory
- github.com/dragonflydb/dragonfly/issues/4468nvdExploitIssue TrackingPatch
News mentions
0No linked articles in our index yet.