CVE Catalog

CVE-2026-54341

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.40%

32th percentile — higher than 32% of all known CVEs

Summary

A vulnerability in DragonflyDB before version 1.39.0 allows remote server crash by sending a crafted RESTORE command. A specially crafted payload triggers an out-of-bounds read during listpack collection loading, causing a process crash (SIGSEGV).

Risk Assessment

An unauthenticated remote attacker can repeatedly crash the server with a single 24-byte command, leading to complete denial of service.

Recommendation

Update DragonflyDB to version 1.39.0 or later immediately. Until then, enable authentication and restrict access to the RESTORE command.

Original NVD description (English source)

Dragonfly is an in-memory data store built for modern application workloads. Prior to 1.39.0, a crafted RESTORE payload triggers an out-of-bounds read in DragonflyDB's listpack collection loaders, crashing the entire server process (SIGSEGV). Because DragonflyDB requires no authentication by default and RESTORE is a normal keyspace command, an unauthenticated remote attacker can crash the server with a single ~24-byte command — a remote, repeatable denial of service. This vulnerability is fixed in 1.39.0.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS