CVE-2022-39197CISA KEV: Actively Exploited

Fortra Cobalt Strike Teamserver Cross-Site Scripting (XSS) Vulnerability

Published Mar 30, 2023·Updated Mar 30, 2023

Description

Fortra Cobalt Strike contains a cross-site scripting (XSS) vulnerability in Teamserver that would allow an attacker to set a malformed username in the Beacon configuration, allowing them to execute code remotely.

Public Exploits & PoCs23 found

PoC: cobaltstrike4.5_cdf

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

223

PoC: CVE-2022-39197

CobaltStrike <= 4.7.1 RCE

6

PoC: CVE-2022-39197-patch

CVE-2022-39197 漏洞补丁. CVE-2022-39197 Vulnerability Patch.

5

PoC: cobaltstrike_swing_xss2rce

CVE-2022-39197

4

PoC: pig_CS4.4

Cobalt Strike 4.4 猪猪版 去暗桩 去流量特征 beacon仿造真实API服务 修补CVE-2022-39197补丁

3

PoC: cve-2022-39197

cve-2022-39197 poc

3

PoC: CSPOC

Cobalt Strike RCE CVE-2022-39197

2

PoC: Gui-poc-test

A testing tool for CobaltStrike-RCE:CVE-2022-39197; Weblogic-RCE:CVE-2023-21839; MinIO:CVE-2023-28432

PoC: coablt_strike_4.5

可以利用這個版本做CVE-2022-39197 RCE POC,以及其他的漏洞測試,請在解壓前關閉防毒軟體,不然會被查殺

PoC: CVE-2022-39197

CVE-2022-39197

PoC: CVE-2022-39197-RCE

CVE-2022-39197 RCE POC

PoC: CVE-2022-39197-fix_patch

CVE-2022-39197 bug fix patch

PoC: about_cobaltstrike4.5_cdf

cobaltstrike4.5版本破解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: CVE-2022-39197-POC

CVE-2022-39197(CobaltStrike XSS <=4.7) POC

PoC: cobaltstrike4.5_cdf

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: cobaltstrike4.5_cdf

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: cobaltstrike4.5_cdf

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: cobaltstrike4.5_cdf

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: cobaltstrike4.5_cdf-1

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: cobaltstrike4.5_cdf

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: cobaltstrike4.5_cdf

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: cobaltstrike4.5_cdf

cobaltstrike4.5版本破/解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子验证、修复CVE-2022-39197等

PoC: CVE-2022-39197

CVE-2022-39197

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free