FromSoftware online RCE in Dark Souls / Elden Ring multiplayer — allows remote code execution on player machines. Servers taken offline. While gaming-focused, demonstrates client-side RCE risk in game engines. Update game clients and avoid untrusted multiplayer lobbies.
The matchmaking servers of Elden Ring, Dark Souls 3, Dark Souls 2, and Dark Souls Remastered allow remote attackers to execute arbitrary code via RCES exploit in the online component.
Exploit-DB.ai delivers real-time AI-triaged zero-day alerts directly to your inbox.
Activate Supernova →