{"uuid": "1c1cf615-6580-4be5-9d3e-b5ee02a3e847", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-27137", "type": "seen", "source": "https://infosec.exchange/users/VirusBulletin/statuses/116691019017195575", "content": "Vincent Li at FortiGuard Labs analyses C0XMO, a new Gafgyt variant discovered in March 2026 that spreads by exploiting CVE-2021-27137. A key change is the separation of lateral movement into a standalone Python script, helping the botnet target multiple architectures and device types. https://www.fortinet.com/blog/threat-research/inside-cross-platform-propagation-of-new-gafgyt-variant-c0xmo", "creation_timestamp": "2026-06-04T09:00:51.199952Z"}