It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a (Debian-specific) Lua sandbox escape, which could result in remote code execution.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 29 Jan 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics kev

{'dateAdded': '2022-03-28'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: debian

Published:

Updated: 2025-07-30T01:37:47.313Z

Reserved: 2022-02-08T00:00:00.000Z

Link: CVE-2022-0543

cve-icon Vulnrichment

Updated: 2024-08-02T23:32:46.290Z

cve-icon NVD

Status : Analyzed

Published: 2022-02-18T20:15:17.583

Modified: 2025-04-02T20:22:56.740

Link: CVE-2022-0543

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.