13-Year-Old Redis Flaw Exposed: CVSS 10.0 Vulnerability Lets Attackers Run Code Remotely
Redis has revealed a critical security vulnerability in its in-memory database software that allows remote code execution through a specially crafted Lua script. This flaw, known as CVE-2025-49844 or RediShell, has been assigned a maximum CVSS score of 10.0.