{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-05T21:32:28.241","vulnerabilities":[{"cve":{"id":"CVE-2024-25115","sourceIdentifier":"security-advisories@github.com","published":"2024-04-09T18:15:08.850","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RedisBloom adds a set of probabilistic data structures to Redis. Starting in version 2.0.0 and prior to version 2.4.7 and 2.6.10, specially crafted `CF.LOADCHUNK` commands may be used by authenticated users to perform heap overflow, which may lead to remote code execution. The problem is fixed in RedisBloom 2.4.7 and 2.6.10.\n"},{"lang":"es","value":"RedisBloom agrega un conjunto de estructuras de datos probabilísticos a Redis. A partir de la versión 2.0.0 y anteriores a las versiones 2.4.7 y 2.6.10, los usuarios autenticados pueden utilizar comandos `CF.LOADCHUNK` especialmente manipulados para realizar un desbordamiento del montón, lo que puede provocar la ejecución remota de código. El problema se solucionó en RedisBloom 2.4.7 y 2.6.10."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-120"},{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://github.com/RedisBloom/RedisBloom/commit/2f3b38394515fc6c9b130679bcd2435a796a49ad","source":"security-advisories@github.com"},{"url":"https://github.com/RedisBloom/RedisBloom/security/advisories/GHSA-w583-p2wh-4vj5","source":"security-advisories@github.com"},{"url":"https://github.com/RedisBloom/RedisBloom/commit/2f3b38394515fc6c9b130679bcd2435a796a49ad","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/RedisBloom/RedisBloom/security/advisories/GHSA-w583-p2wh-4vj5","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}