CVE-2025-10196

Container Runtime vulnerability - Redis

Low CVSS Score: 1.6 Published: 2026-02-20

Description

A authentication bypass vulnerability in Redis Container Runtime allows attackers to access sensitive information. This affects versions prior to 2.35.1.

Affected Systems

Vendor	Redis
Product	Container Runtime
Affected Versions	< 12.47
CWE ID	CWE-434

Mitigation

As a workaround, implement input validation until a patch is available.

Fix Instructions

1. Update Container Runtime to the latest version
2. Apply vendor patch when available
3. Implement network segmentation
4. Monitor for exploitation attempts