CVE-2022-42948
Fortra Cobalt Strike User Interface Remote Code Execution Vulnerability
CVSS
—
Sin CVSS
EPSS
2.7%
p84
KEV
SÍ
30 mar 2023
Exploit Today
75
0-100
Publicado: — · Última mod.: —
2.7%EPSS · 30 días2.7%
2026-06-302026-07-16
Producto
Fortra / Cobalt Strike
Vulnerabilidad
Fortra Cobalt Strike User Interface Remote Code Execution Vulnerability
Añadido a KEV
30 mar 2023
Remediar antes de
20 abr 2023
Uso conocido en ransomware
No
Descripción resumida
Fortra Cobalt Strike User Interface contains an unspecified vulnerability rooted in Java Swing that may allow remote code execution.
Acción requerida
Apply updates per vendor instructions.
Notas
https://www.cobaltstrike.com/blog/out-of-band-update-cobalt-strike-4-7-2/; https://nvd.nist.gov/vuln/detail/CVE-2022-42948
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2022-39197—98.7%
KEV—80Fortra Cobalt Strike Teamserver Cross-Site Scripting (XSS) Vulnerability—