A critical remote code execution (RCE) vulnerability (CVE-2025–27364) has been identified in all versions of MITRE Caldera prior to commit 35bc06e, exposing systems to potential compromise via unauthenticated attackers. The flaw resides in the dynamic compilation mechanism of Caldera’s Sandcat and Manx agents, which are reverse shells designed for red team operations. Exploitation requires only
The post Critical MITRE Caldera Vulnerability Let Attackers Execute Remote Code – PoC Released appeared first on Cyber Security News. Read More
Posted inNews