Cyberpunk 2077 developer CD Projekt Red is warning players of potential exploits that can be executed when using custom saves and mods for the open-world RPG.
CD Projekt Red’s technical support account on Twitter warned Cyberpunk 2077 players of the issue. The game relies on certain external DLL files, some of which can be altered by mods or save files from third-party sources. This can inadvertently run malicious scripts injected into the files when the game launches, which might put your PC at risk.
CD Projekt Red says that it is working on a fix to prevent this from being possible but is asking players to be careful about where they source mods from.
If you plan to use @CyberpunkGame mods/custom saves on PC, use caution. We’ve been made aware of a vulnerability in external DLL files the game uses which can be used to execute code on PCs. Issue will be fixed ASAP. For now, please refrain from using files from unknown sources.
— CD PROJEKT RED CS (@CDPRED_Support) February 2, 2021
Mods created with the official Cyberpunk 2077 modding tools aren’t affected, but there might not be as much content created with them since they were released just a few weeks ago. While fixing this issue, CD Projekt Red is also working on additional performance improvements and bug fixes, following the game’s first big patch in January.
GameSpot may get a commission from retail offers.