4 matches found
CVE-2024-53304
An issue in LRQA Nettitude PoshC2 after commit 09ee2cf allows unauthenticated attackers to connect to the C2 server and execute arbitrary commands via posing as an infected machine...
CVE-2024-53303
A remote code execution RCE vulnerability in the uploadfile function of LRQA Nettitude PoshC2 after commit 123db87 allows authenticated attackers to execute arbitrary code via a crafted POST request...
LRQA Nettitude PoshC2 安全漏洞
LRQA Nettitude PoshC2 is an agent-aware C2 framework from LRQA used to help penetration testers with red teaming, late exploits, and lateral movement. A security vulnerability exists in LRQA Nettitude PoshC2 that stems from allowing an unauthenticated attacker to connect to the C2 server and...
CVE-2024-53304
LRQA Nettitude PoshC2 is affected after commit 09ee2cf , allowing an unauthenticated attacker to connect to the C2 server and execute arbitrary commands by posing as an infected machine. The connected PT-2025-16874 note suggests a temporary workaround: restrict access to the C2 server until a pat...