← back
CVE-2025-27364

CVE-2025-27364

CVSS 10 CRITICALEPSS 23.8%CWE-78
Vexday Risk Score
33Attention
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 10EPSS 23.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
24 Feb 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution (RCE) vulnerability was found in the dynamic agent (implant) compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is running on via a crafted web request to the Caldera server API used for compiling and downloading of Caldera's Sandcat or Manx agent (implants). This web request can use the gcc -extldflags linker flag with sub-commands.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products
MITRE · Caldera

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/mitre/caldera/commit/35bc06e42e19fe7efbc008999b9f993b1b7109c0https://github.com/mitre/caldera/pull/3129https://github.com/mitre/caldera/pull/3131/commits/61de40f92a595bed462372a5e676c2e5a32d1050https://github.com/mitre/caldera/releaseshttps://github.com/mitre/caldera/securityhttps://medium.com/@mitrecaldera/mitre-caldera-security-advisory-remote-code-execution-cve-2025-27364-5f679e2e2a0e