AI Score
Confidence
High
EPSS
Percentile
43.9%
SSVC
Exploitation
poc
Automatable
yes
Technical Impact
total
An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.
[
{
"cpes": [
"cpe:2.3:a:c5pider:havoc:c2_0.74:*:*:*:*:*:*:*"
],
"vendor": "c5pider",
"product": "havoc",
"versions": [
{
"status": "affected",
"version": "c2_0.74"
}
],
"defaultStatus": "unknown"
}
]