Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
8.8 HIGH
CVE-2026-25243 — redis-server RESTORE invalid memory access may allow remote code execution

Redis is an in-memory data structure store. In versions of redis-server up to 8.6.3, the RESTORE command does not properly validate serialized values. An authenticated attacker with permission to exe…

redis | Remote | Memory Corruption
May 05, 2026 May 06, 2026
May 05, 2026
May 06, 2026
8.1 HIGH
CVE-2026-23631 — redis-server Lua use-after-free may allow remote code execution

Redis is an in-memory data structure store. In all versions of redis-server with Lua scripting, an authenticated attacker can exploit the master-replica synchronization mechanism to trigger a use-aft…

redis | Remote | Memory Corruption
May 05, 2026 May 06, 2026
May 05, 2026
May 06, 2026
8.8 HIGH
CVE-2026-23479 — redis-server use-after-free in unblock client flow may allow remote code execution

Redis is an in-memory data structure store. In redis-server from 7.2.0 until 8.6.3, the unblock client flow does not handle an error return from `processCommandAndResetClient` when re-executing a blo…

redis | Remote | Memory Corruption
May 05, 2026 May 06, 2026
May 05, 2026
May 06, 2026
Showing 20 of 7143 Results