Overview
- Description
- A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4.2 and 4.3. It allows remote attackers to crash the C2 server thread and block beacons' communication with it.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-770
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:helpsystems:cobalt_strike:4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F1CD3502-1E23-425E-B465-1CA892EBFEA7"
},
{
"criteria": "cpe:2.3:a:helpsystems:cobalt_strike:4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA98EDF5-00EB-4427-A002-BC5097815225"
}
],
"operator": "OR"
}
]
}
]