Primary

Context

LRQA Nettitude PoshC2 Unauthenticated Command Execution Vulnerability

Vulnerability

A vulnerability in LRQA Nettitude PoshC2, introduced after commit 09ee2cf, allows unauthenticated attackers to connect to the command and control (C2) server and execute arbitrary commands. This is achieved by impersonating an infected machine.

Impact

Exploitation of this vulnerability allows for unauthorized command execution on the C2 server, potentially leading to further exploitation or manipulation of the server environment.

Reproduction

The vulnerability can be reproduced by sending a request to the PoshC2 server without authentication, including a payload that is executed on the server. The payload can be crafted to perform various actions, such as establishing a reverse shell connection.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

LRQA Nettitude PoshC2 Unauthenticated Command Execution Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating