6.4 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacker to escalate privileges via the sendCommandHandler function in the handler.go component.
blog.chebuya.com/posts/remote-code-execution-on-chaos-rat-via-spoofed-agents
github.com/tiagorlampert/CHAOS
nvd.nist.gov/vuln/detail/CVE-2024-31839