Ai-Security-Research

vulnerabilities 2026-06-04
Redis CVE-2026-23479: AI-Discovered Use-After-Free Yields RCE on a Database That's Everywhere
An authenticated use-after-free in Redis's blocking-client path (CVE-2026-23479, CVSS 8.8) gives a low-privilege user OS command execution on the host. It sat unnoticed for over two years and was found by an autonomous AI bug-hunting tool.
cve-2026-23479 redis use-after-free rce cloud-security ai-security-research memory-safety

Redis CVE-2026-23479: AI-Discovered Use-After-Free Yields RCE on a Database That's Everywhere