CVSS: 10.0EPSS: 12%CPEs: 1EXPL: 0CVE-2022-42948 – Fortra Cobalt Strike User Interface Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-42948
24 Mar 2023 — Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible to remotely execute code in the Cobalt Strike UI. Fortra Cobalt Strike User Interface contains an unspecified vulnerability rooted in Java Swing that may allow remote code execution. • https://thesecmaster.com/how-to-fix-cve-2022-42948-a-critical-rce-vulnerability-in-cobalt-strike • CWE-116: Improper Encoding or Escaping of Output •
CVSS: 6.4EPSS: 10%CPEs: 1EXPL: 14CVE-2022-39197 – Fortra Cobalt Strike Teamserver Cross-Site Scripting (XSS) Vulnerability
https://notcve.org/view.php?id=CVE-2022-39197
22 Sep 2022 — An XSS (Cross Site Scripting) vulnerability was found in HelpSystems Cobalt Strike through 4.7 that allowed a remote attacker to execute HTML on the Cobalt Strike teamserver. To exploit the vulnerability, one must first inspect a Cobalt Strike payload, and then modify the username field in the payload (or create a new payload with the extracted information and then modify that username field to be malformed). Se encontró una vulnerabilidad de tipo XSS (Cross Site Scripting) en HelpSystems Cobalt Strike vers... • https://github.com/its-arun/CVE-2022-39197 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-23317
https://notcve.org/view.php?id=CVE-2022-23317
15 Feb 2022 — CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/", and attackers can obtain relevant information by specifying the URL. El receptor HTTP(S) de CobaltStrike versiones anteriores a 4.5 incluyéndola, no determina si la URL de la petición comienza con "/", y los atacantes pueden obtener información relevante al especificar la URL • https://donghuangt1.com/writings/Stager • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 27%CPEs: 2EXPL: 4CVE-2021-36798
https://notcve.org/view.php?id=CVE-2021-36798
09 Aug 2021 — A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4.2 and 4.3. It allows remote attackers to crash the C2 server thread and block beacons' communication with it. Se ha detectado una vulnerabilidad de Denegación de Servicio (DoS) en Team Server en HelpSystems Cobalt Strike versiones 4.2 y 4.3. Permite a atacantes remotos bloquear el hilo del servidor C2 y la comunicación de las balizas con él • https://github.com/M-Kings/CVE-2021-36798 • CWE-770: Allocation of Resources Without Limits or Throttling •