Topic: use-after-free

Sort by: Relevance | Date
  • Critical Redis Flaw Exposes Thousands of Instances
    October 8, 2025
    90%

    Critical Redis Flaw Exposes Thousands of Instances

    A critical security vulnerability (CVE-2025-49844) in Redis allows authenticated attackers to execute remote code via a use-after-free flaw in Lua scripting, posing a severe risk to systems. The flaw affects a vast number of organizations due to Redis's widespread use in cloud environments, and i...

    Read More »
  • 60,000 Redis Servers Exposed by Critical Security Flaw
    October 13, 2025
    88%

    60,000 Redis Servers Exposed by Critical Security Flaw

    A critical vulnerability (CVE-2025-49844) in Redis, rated 10.0 in severity, allows attackers to gain full control over servers by exploiting a flaw in the Lua scripting engine that has existed for 13 years. Approximately 60,000 publicly accessible Redis servers with no authentication are at direc...

    Read More »
  • Microsoft Patches 56 Flaws, Including Two Zero-Days Under Active Attack
    December 12, 2025
    75%

    Microsoft Patches 56 Flaws, Including Two Zero-Days Under Active Attack

    Microsoft's final 2025 security update patches 56 vulnerabilities, including three critical flaws, with two already being actively exploited. The most urgent fix is for CVE-2025-62221, a privilege escalation flaw in Windows that is under active attack and requires prompt patching. Other significa...

    Read More »

Related Topics

cloud security (2) remote code execution (2) zero-day exploit (2) malware deployment (2) security recommendations (2) authentication bypass (2) lateral movement (2) redis vulnerability (2)