Arbitrary Lua Bytecode Execution in Redis Eval Command

Arbitrary Lua Bytecode Execution in Redis Eval Command

CVE-2015-4335 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Redis before 2.8.21 and 3.x before 3.0.2 allows remote attackers to execute arbitrary Lua bytecode via the eval command.

Learn more about our Web Application Penetration Testing UK.