## https://sploitus.com/exploit?id=F88DD833-ABF2-5DFC-B65F-57E89E8BA052
# CVE-2025-32023 - Redis Remote Code Execution (RCE) ๐จ
## ๐ง Overview:
A **critical RCE vulnerability** affecting Redis (< 7.2.4), where attackers can **load malicious modules** using the `MODULE LOAD` command.
## ๐ณ๏ธ Vulnerability Type:
Remote Code Execution (RCE)
## ๐ฅ **Impact:**
An **unauthenticated attacker** can execute arbitrary code and gain full control of the Redis server.
## ๐ **Requirements for Exploitation:**
* Redis is **exposed to the internet** ๐
* No **authentication** is set (no `requirepass` or ACLs) โ
* Attacker has **write access** to Redis ๐
## ๐ ๏ธ **Attack Steps:**
1. Upload malicious `.so` (shared object) file to the Redis server.
2. Use the `MODULE LOAD` command to load the module.
3. Achieve **remote code execution** ๐ฃ
## ๐งช **Tested On:**
Redis 7.2.3 and below
## ๐ซ **Not Affected:**
Redis **7.2.4 and above**
## ๐ก๏ธ Mitigation Steps:
* โ Upgrade to **Redis 7.2.4+**
* ๐ Use **ACLs** or set a strong `requirepass`
* ๐งฑ Block external access via **firewall**
* ๐ Disable `MODULE LOAD` if not needed
## โ ๏ธ Security Tip:
Never expose Redis directly to the internet without proper authentication, ACLs, and network restrictions. Redis is **meant to be internal**.
๐งฉ **CVSS Score:** 9.8 (Critical)
๐งฌ **Discovered By:** Security researchers in early 2025.
---