Outage in Aiven

Vulnerability identified in Redis from 7.0.0 to 7.0.4

Resolved Minor

September 23, 2022 - Started over 1 year ago - Lasted 15 minutes
Official incident page

Need to monitor Aiven outages?
Stay on top of outages with IsDown. Monitor the official status pages of all your vendors, SaaS, and tools, including Aiven, and never miss an outage again.
Start Free Trial

Outage Details

Dear customers A security vulnerability was identified in Redis from 7.0.0 to 7.0.4, which could allow a remote, authenticated, non-privileged user to possibly achieve remote code execution. The vulnerability has the CVE identifier CVE-2022-35951 and has CVSS severity rating of 8.8 High. We are currently working on a proactive fix and an upstream supplied release 7.0.5 will be applied to your service(s) that are running Redis 7. Once the fix is deployed and updated here, you can choose to upgrade your services any time that is convenient for you. Please note : 1.Customers running Redis 6 are not affected by the vulnerability. 2.Any newly created Redis services are not vulnerable. We are actively monitoring the situation. 3.The expected impact of the remediation is negligible based on our testing. 4.There will be no downtime for the services.

Latest Updates ( sorted recent to last )

IDENTIFIED over 1 year ago - at 09/23/2022 09:24AM

Dear customers

A security vulnerability was identified in Redis from 7.0.0 to 7.0.4, which could allow a remote, authenticated, non-privileged user to possibly achieve remote code execution. The vulnerability has the CVE identifier CVE-2022-35951 and has CVSS severity rating of 8.8 High.

We are currently working on a proactive fix and an upstream supplied release 7.0.5 will be applied to your service(s) that are running Redis 7. Once the fix is deployed and updated here, you can choose to upgrade your services any time that is convenient for you.

Please note :
1.Customers running Redis 6 are not affected by the vulnerability.
2.Any newly created Redis services are not vulnerable. We are actively monitoring the situation.
3.The expected impact of the remediation is negligible based on our testing.
4.There will be no downtime for the services.

Latest Aiven outages

Potential issue with Datadog integration - about 1 month ago

Aiven Console and API available again - limited functionality - about 2 months ago

Temporarily suspending upgrades to Aiven for PostgreSQL version 16 due to bug in upstream PostgreSQL - about 2 months ago

Connectivity issues on integration between Kafka connect and Postgres - 3 months ago

console.aiven.io failing to load - 4 months ago

The easiest way to monitor Aiven and all cloud vendors

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 3153 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook

Setup in 5 minutes or less

How much time you'll save your team, by having the outages information close to them?

14-day free trial · No credit card required · Cancel anytime

Start today for FREE