pkg:Alpine/valkey

19 total CVEsCRITICAL3HIGH13MEDIUM3

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.9CVE-2025-49844Redis Lua Use-After-Free may lead to remote code execution
    from 0, < 7.2.11-r0
  • CRITICAL9.8CVE-2025-27151redis-check-aof may lead to stack overflow and potential RCE
    from 0, < 7.2.9-r1
  • CRITICAL9.8CVE-2024-46981Redis' Lua library commands may lead to remote code execution
    from 0, < 7.2.8-r0
  • HIGH8.8CVE-2026-25243redis-server RESTORE invalid memory access may allow remote code execution
    from 0, < 7.2.13-r0
  • HIGH8.8CVE-2026-23479redis-server use-after-free in unblock client flow may allow remote code execution
    from 0, < 7.2.13-r0
  • HIGH8.8CVE-2025-46817Lua library commands may lead to integer overflow and potential RCE
    from 0, < 7.2.11-r0
  • HIGH8.8CVE-2024-31449Lua library commands may lead to stack overflow and RCE in Redis
    from 0, < 7.2.7-r0
  • HIGH8.1CVE-2026-23631redis-server Lua use-after-free may allow remote code execution
    from 0, < 7.2.13-r0
  • HIGH7.8CVE-2025-32023Redis allows out of bounds writes in hyperloglog commands leading to RCE
    from 0, < 7.2.11-r0
  • HIGH7.5CVE-2026-27623Valkey has Pre-Authentication DOS from malformed RESP request
    from 0, < 9.0.3-r0
  • HIGH7.5CVE-2026-21863Malformed Valkey Cluster bus message can lead to Remote DoS
    from 0, < 7.2.12-r0
  • HIGH7.5CVE-2025-48367Redis DoS Vulnerability due to bad connection error handling
    from 0, < 7.2.11-r0
  • HIGH7.5CVE-2025-21605Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client
    from 0, < 7.2.9-r0
  • HIGH7.3CVE-2025-46818Redis: Authenticated users can execute LUA scripts as a different user
    from 0, < 7.2.11-r0
  • HIGH7.1CVE-2025-67733Valkey Affected by RESP Protocol Injection via Lua error_reply
    from 0, < 7.2.12-r0
  • HIGH7.1CVE-2025-46819Redis is vulnerable to DoS via specially crafted LUA scripts
    from 0, < 7.2.11-r0
  • MEDIUM6.5CVE-2024-31228Denial-of-service due to unbounded pattern matching in Redis
    from 0, < 7.2.7-r0
  • MEDIUM4.4CVE-2024-51741Redis allows denial-of-service due to malformed ACL selectors
    from 0, < 7.2.8-r0
  • MEDIUM4.4CVE-2024-31227Denial-of-service due to malformed ACL selectors in Redis
    from 0, < 7.2.7-r0