CVE-2026-25589

HIGH

RedisBloom RESTORE invalid memory access may allow remote code execution

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-25589. PoCs published by mgiay.

AI-analyzed exploit summary The repository contains a Bash script designed to scan for and mitigate multiple Redis CVEs (CVE-2026-23479, CVE-2026-25243, CVE-2026-25588, CVE-2026-25589, CVE-2026-23631) by checking Redis configurations and applying fixes. It does not include exploit code but provides detection and remediation capabilities.

Description

RedisBloom is a probabilistic data structures module for Redis. In all versions of RedisBloom before 2.8.20, the module does not properly validate serialized values processed through the Redis RESTORE command. An authenticated attacker with permission to execute RESTORE on a server with the RedisBloom module loaded can supply a crafted serialized payload that triggers invalid memory access and may lead to remote code execution. A workaround is to restrict access to the RESTORE command with ACL rules. This issue is fixed in version 2.8.20.

Exploits (1)

nomisec SCANNER

by mgiay · poc

https://github.com/mgiay/CVE-2026-25589-25588-25243-23631-23479-REDIS

View Code ZIP pw:eip

The repository contains a Bash script designed to scan for and mitigate multiple Redis CVEs (CVE-2026-23479, CVE-2026-25243, CVE-2026-25588, CVE-2026-25589, CVE-2026-23631) by checking Redis configurations and applying fixes. It does not include exploit code but provides detection and remediation capabilities.

Classification

Scanner 95%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Redis (versions 6.2, 7.2, 7.4, 8.2, 8.4, 8.6)

Auth required

Prerequisites: Redis server access · Redis configuration file access · Redis CLI tool

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed May 08, 2026 Full analysis →

References (2)

Core 2

Core References

X_Refsource_Confirm x_refsource_confirm

https://github.com/RedisBloom/RedisBloom/security/advisories/GHSA-7862-34pw-44wv

X_Refsource_Misc x_refsource_misc

https://github.com/RedisBloom/RedisBloom/releases/tag/v2.8.20

Scores

CVSS v3 8.8

EPSS 0.0058

EPSS Percentile 43.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-122

Status published

Products (2)

redisbloom/redisbloom < 2.8.20

RedisBloom/RedisBloom < 2.8.20

Published May 05, 2026

Tracked Since May 05, 2026