Covenant

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2020-36911 CRITICAL POC Act Now

Covenant C2 framework (0.1.3-0.5) allows forging JWT tokens with admin roles due to hardcoded credentials. Attackers can upload and execute DLL payloads for RCE. PoC available.

RCE Covenant
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2020-36911
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Covenant C2 framework (0.1.3-0.5) allows forging JWT tokens with admin roles due to hardcoded credentials. Attackers can upload and execute DLL payloads for RCE. PoC available.

RCE Covenant
NVD GitHub Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy