A major security flaw could open your PC up to malicious attacks.
Click image for larger version

Name:	ss_2171e3f8deefaf544b27710ad127ffa26d3f712c.jpg
Views:	5993
Size:	787.5 KB
ID:	3508262

When it rains, it pours. So it may seem if you are CD Projekt Red. The team recently released official mod tools for Cyberpunk 2077, but a major security flaw with mods may allow for malicious attacks to impact your PC. CDPR is warning all Cyberpunk 2077 players to avoid using mods until a DLL vulnerability can be fixed. This vulnerability could allow for remote code execution on infected computers.

This vulnerability was brought to public attention by a Redditor going by the name of Romulus_Is_Here. It was originally discovered by the Red Tools mod team member, PixelRickyRick. Romulus says that either through the use of mods or custom crafted save games, malicious code can be executed to take control of the PC by the creator of the mod or custom game save.

CD Projekt Red was allegedly made aware of the security flaw a week ago but only made the issue public today.


The best course of action for users to take right now would be to avoid mods and custom save games until CD Projekt Red fixes this. Even then, a best practice would be to only download and use mods from trusted sources.