Redis 8.0

Status EOLSupport 2025-05 – 2026-02Latest 8.0.6Vulnerabilities 11← All Redis versions
Critical 10.0
2025-10-03< 8.0.4

Redis Lua Use-After-Free may lead to remote code execution

CVE
High 7.7 Unfixed
2026-05-05≤ 8.0.6

redis-server RESTORE invalid memory access may allow remote code execution

CVE
High 7.7 Unfixed
2026-05-05≤ 8.0.6

redis-server use-after-free in unblock client flow may allow remote code execution

CVE
High 7.5
2025-07-07< 8.0.3

Redis DoS Vulnerability due to bad connection error handling

CVE
High 7.0
2025-07-07< 8.0.3

Redis allows out of bounds writes in hyperloglog commands leading to RCE

CVE
High 7.0
2025-10-03< 8.0.4

Lua library commands may lead to integer overflow and potential RCE

CVE
Medium 6.3
2025-10-03< 8.0.4

Redis is vulnerable to DoS via specially crafted LUA scripts

CVE
Medium 6.1 Unfixed
2026-05-05≤ 8.0.6

redis-server Lua use-after-free may allow remote code execution

CVE
Medium 6.0
2025-10-03< 8.0.4

Redis: Authenticated users can execute LUA scripts as a different user

CVE
Medium 4.7
2025-05-29< 8.0.2

redis-check-aof may lead to stack overflow and potential RCE

CVE
Low 3.5 Unfixed
2025-07-23≤ 8.0.3

CVE