GHSA-p3j6-f45h-hw5f

Source

https://github.com/advisories/GHSA-p3j6-f45h-hw5f

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/04/GHSA-p3j6-f45h-hw5f/GHSA-p3j6-f45h-hw5f.json

Aliases

• CVE-2024-30850

Published

2024-04-12T06:33:24Z

Modified

2024-04-12T21:41:54.496218Z

Details

An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go

References

• https://nvd.nist.gov/vuln/detail/CVE-2024-30850
• https://blog.chebuya.com/posts/remote-code-execution-on-chaos-rat-via-spoofed-agents
• https://github.com/tiagorlampert/CHAOS