CVE-2023-28858 - Uncovering the Redis-py Data Leakage Vulnerability
CVE-2023-28858 is a subtle yet critical vulnerability that affected versions of redis-py—the most popular Python client for Redis—prior to version 4.5.3.
CVE-2023-28859 - Redis-py Async Leaky Connections – What Happened, How to Exploit, and How to Fix
In early 2023, a troubling vulnerability called CVE-2023-28859 shook users of the popular Python Redis client, redis-py. If you’re running redis-py before 4.4.