Rapid7

vulnerability

Red Hat: CVE-2024-31227: redis: Denial-of-service due to malformed ACL selectors in Redis (Multiple Advisories)

Severity
4
CVSS
(AV:L/AC:L/Au:M/C:N/I:N/A:C)
Published
Oct 7, 2024
Added
Feb 10, 2025
Modified
Jun 12, 2026

Description

A flaw was found in Redis. This flaw allows an authenticated attacker with sufficient privileges to create a malformed ACL selector that triggers a server panic and subsequent denial of service when accessed.

Solutions

redhat-upgrade-redisredhat-upgrade-redis-debuginforedhat-upgrade-redis-debugsourceredhat-upgrade-redis-develredhat-upgrade-redis-doc
Title
Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.