Seems like redishell is being exploited now

seen in the wild.

196.251.70.)215
401120

#redishell #exploit #reverseshell

Alert: Over 8,500 Redis instances exposed to critical RediShell RCE vulnerability (CVE-2025-49844). Immediate patching and security measures are essential. #CyberSecurity #Redis #RediShell #RCE Link: thedailytechfeed.com/critical-red...

RediShell RCE Alert: Over 8,000 Redis Instances — Immediate Update Recommended This article summarizes the vulnerability principle and exploitation scenario of RediShell (CVE-2025-49844), and based on Criminal IP

The #RediShell RCE #vulnerability, a critical cumulative flaw in Redis’s Lua scripting engine, was publicly disclosed in early October 2025. CVE-2025-49844 is a use-after-free vulnerability that can escape the Lua sandbox and enable host-level remote code execution.
www.criminalip.io/knowledge-hu...

Kritischer Exploit für Remote-Code-Execution bedroht Redis-Instanzen

#Cybersecurity #Cybersicherheit #LuaScripting #OpenSource #RediShell #Schwachstelle @Sysdig #ThreatIntelligence

netzpalaver.de/2025/...

#RediShell: Redis/Valkey Get ‘Perfect 10’ Critical RCE Vuln Redis hell: CVSS 10.0 vulnerability in ubiquitous cloud storage layer. PATCH NOW.

#RediShell: Redis/Valkey Get ‘Perfect 10’ Critical RCE Vuln - Security Boulevard securityboulevard.com/2025/10/redi...

Risky Bulletin: Redis vulnerability impacts all versions released in the last 13 years - Risky Business Media The Redis database project released a security update last week to patch a critical vulnerability that can allow remote attackers to run m [Read More]

#Redis vulnerability is as bad as it gets, allowing remote attackers to run malicious code + impacting all versions released in the last 13 years. Tracked as CVE-2025-49844 , but the #GoogleWiz team that discovered it calls it #RediShell – @campuscodi.risky.biz
risky.biz/risky-bullet...

Understanding CVE-2025-49844: “RediShell” Critical Remote Code Execution in Redis | Sysdig CVE-2025-49844 (RediShell) is a critical Redis remote code execution vulnerability (CVSS 10.0) affecting all versions with Lua scripting. Discovered by Wiz and patched on October 3 2025, it allows aut...

Grosse faille de sécurité dans #Redis qui porte le nom de #Redishell www.sysdig.com/blog/cve-202.... Corrigée dans #Debian packages.debian.org/bookworm/red... (et par conséquent dans #Yunohost). Faites vos mises à jour. Pour rappel, Redis est utilisé comme cache pour #Nextcloud par exemple.

#redishell päivityksiä kello 3 aamulla. Onneksi sen jölkeen voi mennä nukkumaan.

Critical Redis Flaw Could Compromise Most Cloud Environments A Redis flaw, CVE-2025-49844, exposes 75% of cloud systems to remote code execution, data theft, and full system compromise. The post Cr...

#News #Threats #cloud #security #threats […]

[Original post on esecurityplanet.com]

Critical #Redis vulnerability (CVE-2025-49844) allows RCE, affecting 330K instances. Immediate patching recommended. #CyberSecurity #RediShell #DataSecurity Link: thedailytechfeed.com/critical-red...

#RediShell: Redis/Valkey Get ‘Perfect 10’ Critical RCE Vuln Redis hell: CVSS 10.0 vulnerability in ubiquitous cloud storage layer. PATCH NOW.

#RediShell: Redis/Valkey に「Perfect 10」の重大な RCE 脆弱性が発見される

#RediShell: Redis/Valkey Get ‘Perfect 10’ Critical RCE Vuln #SecurityBoulevard (Oct 7)

securityboulevard.com/2025/10/redi...

13-Year-Old RediShell Vulnerability Puts 60,000 Redis Servers at Risk Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

📢🚨 RediShell, a 13 year old Redis vulnerability, leaves about 60,000 unauthenticated servers open to remote code execution.

Read more: hackread.com/13-year-old-...

#Cybersecurity #InfoSec #RediShell #Redis #Vulnerability #InfoSec

GitHub - raminfp/redis_exploit Contribute to raminfp/redis_exploit development by creating an account on GitHub.

An example of the exploit found

github.com/raminfp/redi...

#RediShell

📰 Redis Peringatkan Cacat Keamanan Kritis yang Dapat Dikendalikan dari Jarak Jauh

👉 Baca artikel lengkap di sini: ahmandonk.com/2025/10/07/redis-cve-202...

#cve-2025-49844 #lua #patch #redis #redishell #remote #code #execution #vulnerability #wiz

Wiz Finds Critical Redis RCE Vulnerability: CVE‑2025‑49844 | Wiz Blog A 13‑year Redis flaw (CVE‑2025‑49844) allows attackers to escape Lua sandbox and run code on hosts. See Wiz Research’s analysis and mitigations.

Redis hits a 10.0 Critical on the CVE scale by way of use-after-free to escape the Lua sandbox and allows arbitrary code execution.

www.wiz.io/blog/wiz-res...

#Redis #CVE #InfoSec #Lua #RediShell

Wiz Finds Critical Redis RCE Vulnerability: CVE‑2025‑49844 | Wiz Blog

Wiz Research has uncovered a critical Remote Code Execution (RCE) vulnerability, CVE-2025-49844 which we've dubbed #RediShell, in the widely used Redis in-memory data structure store. The vulnerability has been assigned a CVSS…