Skip to content

H3-2024-0018

Redis Unauthenticated Access Vulnerability

Category VULNERABILITY
Base Score 6.5

Description

The host was identified to be running a Redis instance that does not require authentication to interact with it.

Impact

An attacker could access the Redis in-memory database and retrieve information about the Redis database. Depending on the configuration of the Redis server they may be also be able to write files to disk.

References