CVE-2023-47003

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 16, 2023

Updated: Aug 14, 2024

CWE ID 94

CWE ID 476

CWE ID 20

Summary

CVE-2023-47003 is a vulnerability affecting RedisGraph version 2.12.10. An attacker can exploit this issue by providing a specially crafted string to the DataBlock_ItemIsDeleted function, leading to arbitrary code execution and ultimately causing a denial of service. The vulnerability poses a significant security risk and requires immediate attention from RedisGraph users to apply the necessary patch or upgrade to a patched version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Redis Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tMy_02
https://www.cve.org/CVERecord?id=CVE-2023-47003
https://nvd.nist.gov/vuln/detail/CVE-2023-47003

Back to Vulnerability Database

CVE-2023-47003

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations