Vulnerabilities > CVE-2023-28858 - Off-by-one Error vulnerability in Redis Redis-Py

CVSS 3.7 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

high complexity

redis

CWE-193

NVD

Published: 2023-03-26

Updated: 2023-05-17

Summary

redis-py before 4.5.3 leaves a connection open after canceling an async Redis command at an inopportune time, and can send response data to the client of an unrelated request in an off-by-one manner. NOTE: this CVE Record was initially created in response to reports about ChatGPT, and 4.3.6, 4.4.3, and 4.5.3 were released (changing the behavior for pipeline operations); however, please see CVE-2023-28859 about addressing data leakage across AsyncIO connections in general.

Vulnerable Configurations

Part	Description	Count
Application	Redis Redis Redis PY 4.4.0 Redis Redis PY 4.4.1 Redis Redis PY 4.4.2 Redis Redis PY 4.5.0 Redis Redis PY 4.5.1 Redis Redis PY 4.5.2 Redis Redis PY 4.2.0 Redis Redis PY 4.2.1 Redis Redis PY 4.2.2 Redis Redis PY 4.3.0 Redis Redis PY 4.3.1 Redis Redis PY 4.3.2 Redis Redis PY 4.3.3 Redis Redis PY 4.3.4 Redis Redis PY 4.3.5	22

Common Weakness Enumeration (CWE)

CWE-193 - Off-by-one Error

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References