CVE-2026-25589 – Redis

CVSS 8.8 IMPORTANT

“A trusted data layer can become a control point if validation breaks down.”

This patch addresses four High severity vulnerabilities across Redis and its modules, including RedisTimeSeries and RedisBloom. These issues impact how the system processes certain inputs, potentially allowing unintended behavior or unauthorized actions within affected environments. The CVSS score for each vulnerability is 7.7, which is High severity.

CVE-2026-23479 has a CVSS score of 7.7, which is High severity. CVE-2026-25243 has a CVSS score of 7.7, which is High severity. CVE-2026-25588 has a CVSS score of 7.7, which is High severity. CVE-2026-25589 has a CVSS score of 7.7, which is High severity. No verified exploitation has been confirmed. Systems using Redis in shared, multi-tenant, or externally exposed environments face increased risk if these validation gaps are not addressed.

Key Details

Affected Product: Redisbloom Redisbloom
Attack Vector: Network
Attack Complexity: Low
Privileges Required: Low
User Interaction: None
CWE Classification: CWE-122

Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.

CVE-2026-25589 – Redis

Key Details

Stay Tuned

PLATFORM

SOLUTIONS

RESOURCES

COMPANY

LEGAL

CONTACTS

+1-346-444-8530

Toll Free: 833-444-8530

708 Main St, 10th FL, Houston, TX 77002