No evidence of exploitation … yet A 13-year-old critical flaw in Redis servers, rated a perfect 10 out of 10 in severity, can ...

Overview Recently, NSFOCUS CERT detected that Redis issued a security bulletin and fixed the Redis Lua code execution vulnerability (CVE-2025-49844); Because Redis’s Lua script engine has a ...

A critical-severity vulnerability that lingered in Redis for 13 years potentially exposes 60,000 servers to exploitation.

"The combination of widespread deployment, default insecure configurations, and the severity of the vulnerability creates an urgent need for immediate remediation. Organizations must prioritize ...

The Redis security team has issued a warning to system administrators and cloud infrastructure providers after discovering a ...

Dynamic languages have proved invaluable to improving fast and agile development, most notably for Web development and system administration. Lua is a language that fits in this space. Dynamic ...

Try running this:<BR><pre class="ip-ubbcode-code-pre">lua -e 'print(math.random(2147483648,2147483648))'</pre><BR><BR>I get:<BR><pre class="ip-ubbcode-code-pre ...

The critical vulnerability allows attacks to escape the in-memory data store’s Lua sandbox and subsequently execute arbitrary ...

The Redis security team has released patches for a maximum severity vulnerability that could allow attackers to gain remote code execution on thousands of vulnerable instances.