CVE-2023-47003: Null Pointer Dereference
First published: Thu Nov 16 2023(Updated: )
An issue in RedisGraph v.2.12.10 allows an attacker to execute arbitrary code and cause a denial of service via a crafted string in DataBlock_ItemIsDeleted.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Redislabs Redisgraph | =2.12.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue in RedisGraph?
The vulnerability ID for this issue in RedisGraph is CVE-2023-47003.
What is the severity level of CVE-2023-47003?
The severity level of CVE-2023-47003 is critical.
How can an attacker exploit CVE-2023-47003?
An attacker can exploit CVE-2023-47003 by executing arbitrary code and causing a denial of service via a crafted string in DataBlock_ItemIsDeleted.
Which version of RedisGraph is affected by CVE-2023-47003?
RedisGraph version 2.12.10 is affected by CVE-2023-47003.
Is there a fix available for CVE-2023-47003?
Yes, please refer to the reference link for more information on how to fix CVE-2023-47003.
- agent/first-publish-date
- agent/softwarecombine
- agent/event
- agent/type
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/redislabs
- canonical/redislabs redisgraph
- version/redislabs redisgraph/2.12.10