Off-by-one Error

CVE-2023-28858

Low

3.7/10

Summary

The redis-py versions prior to 4.3.6, 4.4.x prior to 4.4.3, and 4.5.x prior to 4.5.3 as used in ChatGPT and other products, leaves a connection open after canceling an async Redis command at an inopportune time (in the case of a pipeline operation), and can send response data to the client of an unrelated request in an off-by-one manner.

Attack Complexity: HIGH
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: LOW
Availability Impact: NONE

CWE-193 - Off-by-one Error

A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.

References

Advisory
Issue
Pull request
Issue

Advisory Timeline

Published Mar 26, 2023

Off-by-one Error

CVE-2023-28858

Summary

CWE-193 - Off-by-one Error

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS