CVE-2016-8339

MEDIUM Year: 2016
CVSS v3 Score
6.6
Medium
CVSS v2 Score
7.5
High
Weakness Type
CWE-787
View all →

Vulnerability Description

A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. An out of bounds write vulnerability exists in the handling of the client-output-buffer-limit option during the CONFIG SET command for the Redis data structure store. A crafted CONFIG SET command can lead to an out of bounds write potentially resulting in code execution.

Related Vulnerabilities

CVE-2017-17558

MEDIUM
CVSS:6.6(Medium)

The usb_destroy_configuration function in drivers/usb/core/config.c in the USB core subsystem in the Linux kernel through 4.14.5 does not consider the maximum number of configurations and interfaces b...

CWE-7872017

CVE-2020-11524

MEDIUM
CVSS:6.6(Medium)

libfreerdp/codec/interleaved.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write.

CWE-7872020

CVE-2020-14331

MEDIUM
CVSS:6.6(Medium)

A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VT_RESIZE, which causes an out-of-...

CWE-7872020

CVE-2021-47580

MEDIUM
CVSS:6.6(Medium)

In the Linux kernel, the following vulnerability has been resolved: scsi: scsi_debug: Fix type in min_t to avoid stack OOB Change min_t() to use type "u32" instead of type "int" to avoid stack out of ...

CWE-7872021

CVE-2022-1015

MEDIUM
CVSS:6.6(Medium)

A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_api.c of the netfilter subsystem. This flaw allows a local user to cause an out-of-bounds write issue.

CWE-7872022

CVE-2022-20056

MEDIUM
CVSS:6.6(Medium)

In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with...

CWE-7872022