CVE-2022-39197
⚠ KEVEPSS 19.6%Fortra Cobalt Strike Teamserver Cross-Site Scripting (XSS) Vulnerability
Added to CISA KEV: 3/30/2023
Description
Fortra Cobalt Strike contains a cross-site scripting (XSS) vulnerability in Teamserver that would allow an attacker to set a malformed username in the Beacon configuration, allowing them to execute code remotely.
Affected packages (0)
No package mapping in OSV.