CVE-2022-42948
Fortra Cobalt Strike User Interface Remote Code Execution Vulnerability
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
Yes
*KEV
Decision
-
*SSVC
Descriptions
Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible to remotely execute code in the Cobalt Strike UI.
Fortra Cobalt Strike User Interface contains an unspecified vulnerability rooted in Java Swing that may allow remote code execution.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-10-14 CVE Reserved
- 2023-03-24 CVE Published
- 2023-03-30 Exploited in Wild
- 2023-04-20 KEV Due Date
- 2024-08-03 CVE Updated
- 2024-11-12 EPSS Updated
- ---------- First Exploit
CWE
- CWE-116: Improper Encoding or Escaping of Output
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://thesecmaster.com/how-to-fix-cve-2022-42948-a-critical-rce-vulnerability-in-cobalt-strike | Technical Description | |
| https://www.redpacketsecurity.com/helpsystems-cobalt-strike-code-execution-cve-2022-42948 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.cobaltstrike.com/blog | 2023-08-08 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Helpsystems Search vendor "Helpsystems" | Cobalt Strike Search vendor "Helpsystems" for product "Cobalt Strike" | 4.7.1 Search vendor "Helpsystems" for product "Cobalt Strike" and version "4.7.1" | - |
Affected
| ||||||