CVE-2025-46686 – Redis Memory Allocation Vulnerability

CVE ID : CVE-2025-46686

Published : July 23, 2025, 7:15 p.m. | 1 hour, 45 minutes ago

Description : Redis through 7.4.3 allows memory consumption via a multi-bulk command composed of many bulks, sent by an authenticated user. This occurs because the server allocates memory for the command arguments of every bulk, even when the command is skipped because of insufficient permissions.

Severity: 4.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…