Yossigo

**Name of the Vulnerable Software and Affected Versions** Redis versions prior to 6.0.19 Redis versions prior to 6.2.12 Redis versions prior to 7.0.11 **Description** The issue is related to insufficient input validation in the Redis database management system. Exploitation of this issue can allow a remote attacker to cause a denial of service. Authenticated users can use the `HINCRBYFLOAT` command to create an invalid hash field that will crash Redis on access. **Recommendations** For versions prior to 6.0.19, upgrade to version 6.0.19 or later. For versions prior to 6.2.12, upgrade to version 6.2.12 or later. For versions prior to 7.0.11, upgrade to version 7.0.11 or later. As a temporary workaround, consider restricting access to the `HINCRBYFLOAT` command until a patch is applied.