Understanding CVE-2025-49844: “RediShell” Critical Remote Code Execution in Redis

Understanding CVE-2025-49844: “RediShell” Critical Remote Code Execution in Redis
DRANK

CVE-2025-49844 (RediShell) is a critical Redis remote code execution vulnerability (CVSS 10.0) affecting all versions with Lua scripting. Discovered by Wiz and patched on October 3 2025, it allows authenticated users to gain host access. Learn how it works, who’s affected, and how to detect and mitigate it.

sysdig.com 7 days ago

Open page

https://www.sysdig.com/blog/cve-2025-49844-redishell