Critical severity9.8NVD Advisory· Published Aug 12, 2024· Updated Jun 17, 2026
CVE-2024-41570
CVE-2024-41570
Description
An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.
Affected products
2Patches
Vulnerability mechanics
References
1- blog.chebuya.com/posts/server-side-request-forgery-on-havoc-c2/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.