Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-41570

Aug. 12, 2024, 1:41 p.m.

Tags

cve@mitre.org
2024-08-12
CVE-2024-41570

Product(s) Impacted

Havoc

  • 2.0.7

Description

An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.

Weaknesses

Date

Published: Aug. 12, 2024, 1:38 p.m.

Last Modified: Aug. 12, 2024, 1:41 p.m.

Status : Undergoing Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

cve@mitre.org

References

https://blog.chebuya.com/ cve@mitre.org