Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
9.8
CVSSv3
CVE-2017-1000248
Published: 17/11/2017 Updated: 04/12/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Summary
Redis-store <=v1.3.0 allows unsafe objects to be loaded from redis
Subscribe to Redis-store
Vulnerable Product
Search on Vulmon
Subscribe to Product
redis-store redis-store
Vendor Advisories
Debian CVElist Bug Report Logs: ruby-redis-store: CVE-2017-1000248
Debian Bug report logs - #882034 ruby-redis-store: CVE-2017-1000248 Package: src:ruby-redis-store; Maintainer for src:ruby-redis-store is Debian Ruby Extras Maintainers <pkg-ruby-extras-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 17 Nov 2017 19:27:06 UTC Seve ...
References
CWE-502
https://github.com/redis-store/redis-store/commit/e0c1398d54a9661c8c70267c3a925ba6b192142e
https://nvd.nist.gov
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882034
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started