Helpsystems Cobalt Strike vulnerabilities
4 known vulnerabilities affecting helpsystems/cobalt_strike.
Total CVEs
4
CISA KEV
2
actively exploited
Public exploits
1
Exploited in wild
2
Severity breakdown
CRITICAL1HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2022-39197P2MEDIUMCVSS 6.1KEVPoCfixed in 4.7.12022-09-22
CVE-2022-39197 [MEDIUM] CWE-79 CVE-2022-39197: An XSS (Cross Site Scripting) vulnerability was found in HelpSystems Cobalt Strike through 4.7 that
An XSS (Cross Site Scripting) vulnerability was found in HelpSystems Cobalt Strike through 4.7 that allowed a remote attacker to execute HTML on the Cobalt Strike teamserver. To exploit the vulnerability, one must first inspect a Cobalt Strike payload, and then modify the username field in the payload (or create a new payload with the extracted inform
nvd
CVE-2022-42948P1CRITICALCVSS 9.8KEVv4.7.12023-03-24
CVE-2022-42948 [CRITICAL] CWE-116 CVE-2022-42948: Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components.
Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible to remotely execute code in the Cobalt Strike UI.
nvd
CVE-2021-36798P3HIGHCVSS 7.5v4.2v4.32021-08-09
CVE-2021-36798 [HIGH] CWE-770 CVE-2021-36798: A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4
A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4.2 and 4.3. It allows remote attackers to crash the C2 server thread and block beacons' communication with it.
nvd
CVE-2022-23317P3HIGHCVSS 7.5fixed in 4.52022-02-15
CVE-2022-23317 [HIGH] CWE-287 CVE-2022-23317: CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/", and
CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/", and attackers can obtain relevant information by specifying the URL.
nvd