You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 48367
About this tag
CVE-2025-48367 is a denial-of-service vulnerability in Redis that allows an unauthenticated attacker to cause client starvation by triggering repeated connection-level errors. The flaw affects multiple Redis versions and can render instances unavailable until patched. Fixed versions include Redis 8.0.3, 7.4.5, 7.2.10, and 6.2.19. Administrators are urged to prioritize patching or apply compensating controls if immediate updates are not possible. This tag covers discussions and guidance related to CVE-2025-48367, including mitigation steps and patch deployment for Redis deployments.
Redis administrators need to act now: a denial-of-service flaw tracked as CVE‑2025‑48367 allows an unauthenticated network connection to trigger repeated connection-level errors that can starve legitimate clients and render Redis instances unavailable until patched or otherwise mitigated. The...