FromSoftware online RCE in Dark Souls / Elden Ring multiplayer — allows remote code execution on player machines. Servers taken offline. While gaming-focused, demonstrates client-side RCE risk in game engines. Update game clients and avoid untrusted multiplayer lobbies.
The matchmaking servers of Elden Ring, Dark Souls 3, Dark Souls 2, and Dark Souls Remastered allow remote attackers to execute arbitrary code via RCES exploit in the online component.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →