Lucene search
K

38 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-44380

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00507EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-43879

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00417EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-43880

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00417EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-4278

Malicious code in bioql PyPI...

10CVSS8.7AI score0.23813EPSS
Exploits2References7
Packet Storm News
Packet Storm News
added 2025/08/05 12:0 a.m.3 views

Simulating Cyberattacks through a Breach Attack Simulation (BAS) Platform Empowered by Security Chaos Engineering (SCE)

In today digital landscape, organizations face constantly evolving cyber threats, making it essential to discover slippery attack vectors through novel techniques like Security Chaos Engineering SCE, which allows teams to test defenses and identify vulnerabilities effectively. This paper proposes...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:39 p.m.8 views

CVE-2022-40606

MITRE CALDERA before 4.1.0 allows XSS in the Operations tab and/or Debrief plugin via a crafted operation name, a different vulnerability than CVE-2022-40605...

6.1CVSS5.8AI score0.00417EPSS
Exploits0References1
Saint
Saint
added 2025/02/28 12:0 a.m.142 views

MITRE Caldera dynamic compilation command injection

Added: 02/28/2025 Background MITRE Caldera is a security platform for emulating adversaries. Problem The dynamic compilation functionality in the Manx and Sandcat agents is affected by an injection vulnerability which could allow remote command execution. Resolution Upgrade to Caldera 5.1.0 or...

10CVSS8AI score0.23813EPSS
Exploits2
Saint
Saint
added 2025/02/28 12:0 a.m.119 views

MITRE Caldera dynamic compilation command injection

Added: 02/28/2025 Background MITRE Caldera is a security platform for emulating adversaries. Problem The dynamic compilation functionality in the Manx and Sandcat agents is affected by an injection vulnerability which could allow remote command execution. Resolution Upgrade to Caldera 5.1.0 or...

10CVSS7.7AI score0.23813EPSS
Exploits2
NVD
NVD
added 2025/02/24 7:15 p.m.13 views

CVE-2025-27364

In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution RCE vulnerability was found in the dynamic agent implant compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is running on via a crafted web...

10CVSS0.23813EPSS
Exploits2References6
OSV
OSV
added 2025/02/24 7:15 p.m.7 views

CVE-2025-27364

In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution RCE vulnerability was found in the dynamic agent implant compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is running on via a crafted web...

10CVSS8.4AI score0.23813EPSS
Exploits2References6
Vulnrichment
Vulnrichment
added 2025/02/24 12:0 a.m.7 views

CVE-2025-27364

In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution RCE vulnerability was found in the dynamic agent implant compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is running on via a crafted web...

10CVSS8.7AI score0.23813EPSS
Exploits2References6
CVE
CVE
added 2025/02/24 12:0 a.m.146 views

CVE-2025-27364

MITRE Caldera vulnerability CVE-2025-27364 affects Caldera server in versions up to 4.2.0 and 5.0.0 prior to the commit 35bc06e. It is a Remote Code Execution (RCE) in the server’s dynamic agent (implant) compilation feature, allowing a remote attacker to run arbitrary code on the Caldera host vi...

10CVSS8.5AI score0.23813EPSS
Exploits2References6
CNNVD
CNNVD
added 2025/02/24 12:0 a.m.4 views

MITRE Caldera 安全漏洞

MITRE Caldera is a MITRE open source automated adversarial simulation platform. A security vulnerability exists in MITRE Caldera versions 4.2.0 and earlier and 5.0.0 and earlier, which stems from remote code execution in the Dynamic Proxy Compilation feature and allows an attacker to execute...

10CVSS8.9AI score0.23813EPSS
Exploits2References7
FreeBSD
FreeBSD
added 2025/02/16 12:0 a.m.14 views

caldera -- Remote Code Execution

MITRE Caldera contributor report: In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution RCE vulnerability was found in the dynamic agent implant compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is...

10CVSS8.8AI score0.23813EPSS
Exploits2References1
GithubExploit
GithubExploit
added 2024/06/09 11:4 p.m.59 views

Exploit for Improper Privilege Management in Mitre Caldera

CVE-2021-42562: Improper Access Control in MITRE Caldera Cald...

8.8CVSS8.7AI score0.01957EPSS
Exploits4
GithubExploit
GithubExploit
added 2024/06/09 10:39 p.m.68 views

Exploit for Injection in Mitre Caldera

CVE-2021-42561: Command Injection via the Human Plugin in...

9CVSS9AI score0.19572EPSS
Exploits2
GithubExploit
GithubExploit
added 2024/06/09 8:20 p.m.64 views

Exploit for Cross-site Scripting in Mitre Caldera

CVE-2021-42558: Multiple Cross-Site Scripting in MITRE Caldera...

6.1CVSS6.2AI score0.01052EPSS
Exploits2
NVD
NVD
added 2022/10/17 9:15 p.m.21 views

CVE-2022-40606

MITRE CALDERA before 4.1.0 allows XSS in the Operations tab and/or Debrief plugin via a crafted operation name, a different vulnerability than CVE-2022-40605...

6.1CVSS0.00417EPSS
Exploits0References1
OSV
OSV
added 2022/10/17 9:15 p.m.16 views

CVE-2022-40606

MITRE CALDERA before 4.1.0 allows XSS in the Operations tab and/or Debrief plugin via a crafted operation name, a different vulnerability than CVE-2022-40605...

6.1CVSS5.9AI score
Exploits0References1
Prion
Prion
added 2022/10/17 9:15 p.m.20 views

Design/Logic Flaw

MITRE CALDERA before 4.1.0 allows XSS in the Operations tab and/or Debrief plugin via a crafted operation name, a different vulnerability than CVE-2022-40605...

5.8CVSS5.9AI score0.00417EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder