Redis Server Use-After-Free Vulnerability Allows Remote Code Execution

Redis Server Use-After-Free Vulnerability Allows Remote Code Execution

A critical security vulnerability has been discovered in Redis Server that could allow authenticated attackers to achieve remote code execution through a use-after-free flaw in the Lua scripting engine. The vulnerability, tracked as CVE-2025-49844, affects all versions of Redis that support Lua scripting functionality.

Source: GBHackers

Date:

6 October 2025

Categorie(s):

Tag(s):

Cyber Security News, Databases, NoSQL, Open Source, Open Source Databases

Thieves order a tasty takeout of names and addresses from DoorDash18 November 2025
SAFE acquires Balbix to unify AI-native exposure management and cyber risk quantification18 November 2025
Apono raises $34M to tackle cloud privilege sprawl with Zero Standing Privilege model18 November 2025
DoorDash Confirms Data Breach Exposing Customer Personal Information18 November 2025
Vanta launches Agentic Trust Platform to unify compliance, risk and trust programs18 November 2025