CVE-2025-27364

10.0 CRITICAL
Published: February 24, 2025 Modified: April 15, 2026
View on NVD

Description

In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution (RCE) vulnerability was found in the dynamic agent (implant) compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is running on via a crafted web request to the Caldera server API used for compiling and downloading of Caldera's Sandcat or Manx agent (implants). This web request can use the gcc -extldflags linker flag with sub-commands.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
https://github.com/mitre/caldera/commit/35bc06e42e19fe7efbc008999b9f993b1b7109c0
Source: cve@mitre.org
https://github.com/mitre/caldera/pull/3129
Source: cve@mitre.org
https://github.com/mitre/caldera/pull/3131/commits/61de40f92a595bed462372a5e676c2e5a32d1050
Source: cve@mitre.org
https://github.com/mitre/caldera/releases
Source: cve@mitre.org
https://github.com/mitre/caldera/security
Source: cve@mitre.org
https://medium.com/@mitrecaldera/mitre-caldera-security-advisory-remote-code-execution-cve-2025-27364-5f679e2e2a0e
Source: cve@mitre.org
https://medium.com/@mitrecaldera/mitre-caldera-security-advisory-remote-code-execution-cve-2025-27364-5f679e2e2a0e
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

7 reference(s) from NVD

Quick Stats

CVSS v3 Score
10.0 / 10.0
EPSS (Exploit Probability)
17.8%
95th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-78

Related CVEs

CVE-2026-41113 8.1
CVE-2026-40308 N/A
CVE-2026-40249 N/A
CVE-2026-40248 N/A
CVE-2026-40247 N/A