Denisvm

**Name of the Vulnerable Software and Affected Versions** Redis versions prior to 3.2.3 **Description** The issue allows local users to obtain sensitive information by reading a file. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. Technical details about exploitation include the fact that the `linenoise` component uses world-readable permissions for the `.rediscli history` file, allowing unauthorized access to sensitive data. **Recommendations** For Redis versions prior to 3.2.3, update to version 3.2.3 or later to resolve the issue. As a temporary workaround, consider changing the permissions of the `.rediscli history` file to restrict access until a patch is applied. Restrict access to the `.rediscli history` file to minimize the risk of exploitation.