Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
Redis Software Has Critical Security Flaws
CLEANSTART-2026-AY29369
Summary
A critical security issue affects the Redis open source database, which can be exploited by hackers to gain unauthorized access to sensitive data. This could allow attackers to steal or manipulate sensitive information. Update to the latest version of Redis to fix this issue.
What to do
- Update valkey to version 7.2.7-r0.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | valkey | <= 7.2.7-r0 | 7.2.7-r0 |
Original title
Redis is an open source, in-memory database that persists on disk
Original description
Multiple security vulnerabilities affect the valkey package. Redis is an open source, in-memory database that persists on disk. See references for individual vulnerability details.
osv CVSS3.1
9.8
- https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advis... Vendor Advisory
- https://osv.dev/vulnerability/CVE-2024-31227 URL
- https://osv.dev/vulnerability/CVE-2024-31228 URL
- https://osv.dev/vulnerability/CVE-2024-31449 URL
- https://nvd.nist.gov/vuln/detail/CVE-2024-31227 URL
- https://nvd.nist.gov/vuln/detail/CVE-2024-31228 URL
- https://nvd.nist.gov/vuln/detail/CVE-2024-31449 URL
Published: 4 Mar 2026 · Updated: 13 Mar 2026 · First seen: 9 Mar 2026