CobaltStrike RCE

CVE-2022-39197-POC

According to the Update Log of the latest version 4.7.1 officially released by CobaltStrike on 20 September, teamserver version(<=4.7) has XSS vulnerability, which can cause RCE.

GitHub - xzajyjs/CVE-2022-39197-POC: CVE-2022-39197(CobaltStrike XSS <=4.7) POC

CVE-2022-39197(CobaltStrike XSS <=4.7)漏洞复现