CVE & CISA-KEV Catalog

CVE-2025-46818

MEDIUM
6.0
CVSS v3
NVD

Description

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate different LUA objects and potentially run their own code in the context of another user. The problem exists in all versions of Redis with LUA scripting. This issue is fixed in version 8.2.2. A workaround to mitigate the problem without patching the redis-server executable is to prevent users from executing LUA scripts. This can be done using ACL to block a script by restricting both the EVAL and FUNCTION command families.

How to fix

Remediation Available
redictDebian
Fixed in:7.3.6+ds-1CVE-2025-46818
redisRocky
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.x86_64::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.s390x::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.src::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.x86_64::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.x86_64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.ppc64le::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.ppc64le::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.aarch64::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.src::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.src::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.aarch64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.aarch64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.s390x::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.ppc64le::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.s390x::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
redisRed Hat / RHEL
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.ppc64le::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.x86_64::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.s390x::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.src::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.aarch64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.aarch64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.src::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.x86_64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.ppc64le::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.s390x::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.x86_64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.s390x::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.aarch64::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.ppc64le::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.src::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
redis-debuginfoRed Hat / RHEL
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.ppc64le::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.s390x::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.aarch64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.x86_64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.aarch64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.ppc64le::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.x86_64::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.aarch64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.s390x::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.s390x::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.ppc64le::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.x86_64::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
redis-debuginfoRocky
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.s390x::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.x86_64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.x86_64::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.s390x::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.ppc64le::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.aarch64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.aarch64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.ppc64le::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.s390x::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.ppc64le::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.aarch64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.x86_64::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
redis-debugsourceRed Hat / RHEL
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.s390x::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.x86_64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.ppc64le::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.x86_64::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.s390x::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.ppc64le::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.s390x::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.ppc64le::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.aarch64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.aarch64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.x86_64::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.aarch64::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
redis-debugsourceRocky
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.x86_64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.aarch64::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.s390x::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.s390x::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.aarch64::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.ppc64le::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.ppc64le::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.x86_64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.aarch64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.ppc64le::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.x86_64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.s390x::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
redis-develRed Hat / RHEL
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.s390x::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.aarch64::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.s390x::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.x86_64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.ppc64le::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.aarch64::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.aarch64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.x86_64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.ppc64le::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.s390x::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.ppc64le::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.x86_64::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
redis-develRocky
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.s390x::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.aarch64::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.x86_64::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.x86_64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.ppc64le::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.aarch64::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.x86_64::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.s390x::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.aarch64::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.ppc64le::redis:6RHSA-2025:19238
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.s390x::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.ppc64le::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
redis-docRocky
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.noarch::redis:7RHSA-2025:20955
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.noarch::redis:7RHSA-2025:19345
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.noarch::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
redis-docRed Hat / RHEL
Fixed in:0:7.2.11-1.module+el9.6.0+23552+a3d3d132.noarch::redis:7RHSA-2025:19345
Fixed in:0:7.2.11-1.module+el9.7.0+23559+d075163a.noarch::redis:7RHSA-2025:20955
Fixed in:0:6.2.20-1.module+el8.10.0+23551+d4cd15d7.noarch::redis:6RHSA-2025:19238
Fixed in:0:6.2.20-2.el9_7RHSA-2025:20926
Fixed in:0:6.2.20-1.el9_6RHSA-2025:19237
valkeyRed Hat / RHEL
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
valkeyRocky
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
valkey-debuginfoRocky
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
valkey-debuginfoRed Hat / RHEL
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
valkey-debugsourceRocky
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
valkey-debugsourceRed Hat / RHEL
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
valkey-develRed Hat / RHEL
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
valkey-develRocky
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-1.el10_0RHSA-2025:19675
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el10_1RHSA-2025:21936
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
Fixed in:0:8.0.6-2.el9_7RHSA-2025:21916
valkeyUbuntu
Fixed in:7.2.11+dfsg1-0ubuntu0.2USN-7893-1
Fixed in:8.1.4+dfsg1-0ubuntu0.2USN-7893-1
valkey-serverUbuntu
Fixed in:7.2.11+dfsg1-0ubuntu0.2USN-7893-1
Fixed in:8.1.4+dfsg1-0ubuntu0.2USN-7893-1
Redis on WindowsWindows application
Affected:8.2.0 8.2.2Fixed in:8.2.2MSOpenTech
Affected:7.4.0 7.4.6Fixed in:7.4.6MSOpenTech
Affected:7.0 7.2.11Fixed in:7.2.11MSOpenTech
Affected:8.0.0 8.0.4Fixed in:8.0.4MSOpenTech
Affected:6.2.20Fixed in:6.2.20MSOpenTech

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityHigh
Privileges RequiredLow
User InteractionRequired
ScopeUnchanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityNone

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N

Exploit Intelligence

0.70%probability of exploitation in 30 days
49thpercentile

Moderate risk: more likely to be exploited than 49% of all known CVEs.

References

Third-Party Advisory1
Release Notes1

Related Vulnerabilities

Other CWE-94 (Code Injection) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2017-9841Critical9.8100%KEVFix
CVE-2015-1635Critical9.8100%KEV-
CVE-2022-22954Critical9.8100%KEV + Ransom-
CVE-2021-22204Medium6.8100%KEVFix
CVE-2025-3248Critical9.8100%KEVFix
CVE-2012-0158High8.8100%KEV-
Embed a live status badge for CVE-2025-46818
CVE-2025-46818 severity badge

Markdown

[![CVE-2025-46818](https://tridentstack.com/cve/badge/CVE-2025-46818.svg)](https://tridentstack.com/cve/CVE-2025-46818)

HTML

<a href="https://tridentstack.com/cve/CVE-2025-46818"><img src="https://tridentstack.com/cve/badge/CVE-2025-46818.svg" alt="CVE-2025-46818"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-01-27.