SA-2023-103 – Privilege escalation via Redis server (CVE-2023-43119)

Extreme Networks Security Advisory

It is possible to use telnet to gain privilege escalation via the Redis server to perform arbitrary filesystem operations with root privilege.

Extreme Networks acknowledges and thanks David Yesland of Rhino Security Labs for reporting this vulnerability to Extreme under coordinated vulnerability disclosure protocols.