Redis-store <=v1.3.0 allows unsafe objects to be loaded from redis
References
Link | Resource |
---|---|
https://github.com/redis-store/redis-store/commit/e0c1398d54a9661c8c70267c3a925ba6b192142e | Patch Third Party Advisory |
Configurations
History
No history.
Information
Published : 2017-11-17 04:29
Updated : 2024-02-04 19:29
NVD link : CVE-2017-1000248
Mitre link : CVE-2017-1000248
CVE.ORG link : CVE-2017-1000248
JSON object : View
Products Affected
redis-store
- redis-store
CWE
CWE-502
Deserialization of Untrusted Data