CVE-2023-31654 | Redis Raft up to master-7b46079 alloc.c hiredisAllocFns Privilege Escalation (Issue 600)

Posted by Angelo Barbosa | Jan 24, 2024 | CVE

A vulnerability was found in Redis Raft up to master-7b46079 and classified as critical. Affected by this issue is the function hiredisAllocFns of the file /opt/fs/redisraft/deps/hiredis/alloc.c. The manipulation leads to Privilege Escalation.

This vulnerability is handled as CVE-2023-31654. The attack can only be done within the local network. There is no exploit available.

CVE-2023-31654 | Redis Raft up to master-7b46079 alloc.c hiredisAllocFns Privilege Escalation (Issue 600)

Related Posts

CVE-2024-1398 | Ultimate Bootstrap Elements for Elementor Plugin up to 1.3.6 on WordPress cross site scripting

CVE-2024-0978 | My Private Site Plugin up to 3.0.14 on WordPress REST API information disclosure

CVE-2024-5558 | Schneider Electric SpaceLogic AS-P/SpaceLogic AS-B up to 5.0.3 toctou (SEVD-2024-163-04)

CVE-2024-5191 | Branda Plugin up to 3.4.17 on WordPress SVG Upload cross site scripting