CVE-2026-54341
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk32th percentile — higher than 32% of all known CVEs
Summary
A vulnerability in DragonflyDB before version 1.39.0 allows remote server crash by sending a crafted RESTORE command. A specially crafted payload triggers an out-of-bounds read during listpack collection loading, causing a process crash (SIGSEGV).
Risk Assessment
An unauthenticated remote attacker can repeatedly crash the server with a single 24-byte command, leading to complete denial of service.
Recommendation
Update DragonflyDB to version 1.39.0 or later immediately. Until then, enable authentication and restrict access to the RESTORE command.
Original NVD description (English source)
Dragonfly is an in-memory data store built for modern application workloads. Prior to 1.39.0, a crafted RESTORE payload triggers an out-of-bounds read in DragonflyDB's listpack collection loaders, crashing the entire server process (SIGSEGV). Because DragonflyDB requires no authentication by default and RESTORE is a normal keyspace command, an unauthenticated remote attacker can crash the server with a single ~24-byte command — a remote, repeatable denial of service. This vulnerability is fixed in 1.39.0.

