{"vulnerability": "CVE-2025-27364", "sightings": [{"uuid": "acc2ef20-8794-4762-a9c7-8f4edc01eb9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114060558122077118", "content": "", "creation_timestamp": "2025-02-24T19:39:57.465019Z"}, {"uuid": "be4a3747-49be-4d4f-9ef7-1bdbe8fe24f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ljhu4tztvvy2", "content": "", "creation_timestamp": "2025-03-03T11:37:37.424246Z"}, {"uuid": "a8408b7e-658f-49e6-9abf-38acd01f6bb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/hackmanac.com/post/3lj3e7grmtk2l", "content": "", "creation_timestamp": "2025-02-26T12:16:30.222649Z"}, {"uuid": "eb11de41-61c0-493f-a864-84c980efeaa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3lj3fwsgcnd23", "content": "", "creation_timestamp": "2025-02-26T12:47:23.491836Z"}, {"uuid": "d0642be1-1ace-43ca-93dd-3541645a3f13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/leekthehack.bsky.social/post/3lj3nlyj7dk2v", "content": "", "creation_timestamp": "2025-02-26T15:04:33.214612Z"}, {"uuid": "566cf12b-9140-4e6d-9878-fe80d893f02e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ljmkj56oyy32", "content": "", "creation_timestamp": "2025-03-05T08:25:52.811073Z"}, {"uuid": "b3fcfc27-64b7-4fd2-a4f1-a4d5f509ea91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-27364", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/114060653643343413", "content": "", "creation_timestamp": "2025-02-24T20:04:14.803907Z"}, {"uuid": "e7a5bb91-3b78-4060-883f-d17bce37dcf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/darkwebinformer.bsky.social/post/3lix5g6reu22r", "content": "", "creation_timestamp": "2025-02-24T20:04:20.524855Z"}, {"uuid": "e6f4d885-e068-47f0-b8af-099115d9c342", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114061063322403921", "content": "", "creation_timestamp": "2025-02-24T21:48:28.522922Z"}, {"uuid": "4f383452-b383-4ebd-8d25-59e4ac135a46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ljahgorde342", "content": "", "creation_timestamp": "2025-02-28T13:00:01.862813Z"}, {"uuid": "5a784bd7-5fc4-44cb-af2e-3e531b0a4f34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ljmgy2all432", "content": "", "creation_timestamp": "2025-03-05T07:21:44.504548Z"}, {"uuid": "40b89184-5dac-4683-b849-31cc39832998", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/royans.bsky.social/post/3lj4eik2uhf2c", "content": "", "creation_timestamp": "2025-02-26T21:54:11.537333Z"}, {"uuid": "f60e4383-d6fe-4185-ac07-ea5fc93fd8ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://threatintel.cc/2025/02/25/security-alert-critical-flaws-in.html", "content": "", "creation_timestamp": "2025-02-25T11:50:15.000000Z"}, {"uuid": "bf8cb766-a2ce-464b-8724-336d9c8ca987", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3liy4or5tvs2c", "content": "", "creation_timestamp": "2025-02-25T05:23:57.042715Z"}, {"uuid": "73fccf9c-0ced-4a53-92e4-09ca1c5a4bc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ljmvgn2p6if2", "content": "", "creation_timestamp": "2025-03-05T11:40:33.190888Z"}, {"uuid": "86963828-c900-4319-81c1-907fe1b45861", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-27364", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3liy6crzgbc2p", "content": "", "creation_timestamp": "2025-02-25T05:52:57.136565Z"}, {"uuid": "c4a6ebc4-98c4-4328-b0dd-d620b69c470c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ljkimw6h3gc2", "content": "", "creation_timestamp": "2025-03-04T12:48:44.387974Z"}, {"uuid": "8ed82eb2-d3cf-4067-8041-4f35d4223c1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lixhf5jzeo2r", "content": "", "creation_timestamp": "2025-02-24T23:02:43.185382Z"}, {"uuid": "5f536373-afd1-45cd-b268-b5bc99afa8d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3liyjyr3vox2u", "content": "", "creation_timestamp": "2025-02-25T09:22:06.215324Z"}, {"uuid": "53de6db5-b76e-4dce-9e4f-0351138a865c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3liykdme4722k", "content": "", "creation_timestamp": "2025-02-25T09:28:13.036676Z"}, {"uuid": "3743527b-70d4-4ae2-92c5-785f7fea0272", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ljmyfkkfdbf2", "content": "", "creation_timestamp": "2025-03-05T12:33:58.821932Z"}, {"uuid": "930fe149-a462-46ee-9772-bfdbae6bcfdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-27364", "type": "seen", "source": "https://bsky.app/profile/OpenSource.activitypub.awakari.com.ap.brid.gy/post/3liynxv3tbvl2", "content": "", "creation_timestamp": "2025-02-25T10:33:39.196755Z"}, {"uuid": "b939ce8e-beb7-4806-a6d1-3fde1b7f98d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lj234ahbia2f", "content": "", "creation_timestamp": "2025-02-26T00:00:55.711115Z"}, {"uuid": "ab70412a-40c0-4043-8ed9-f0831a4a5e27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3liystizb662c", "content": "", "creation_timestamp": "2025-02-25T12:00:14.636554Z"}, {"uuid": "ceb02592-f7d0-4e55-bb57-1e194f23d656", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-27364", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/114064609060229366", "content": "", "creation_timestamp": "2025-02-25T12:50:09.562701Z"}, {"uuid": "be5577b5-441b-434c-98e9-f6a9ef872fe8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-27364", "type": "seen", "source": "https://bsky.app/profile/OpenSource.activitypub.awakari.com.ap.brid.gy/post/3ljf4zauex7z2", "content": "", "creation_timestamp": "2025-03-02T09:35:41.680925Z"}, {"uuid": "56e2290c-f9c2-47f0-848c-48f119d98a3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "MISP/fc16b923-3a13-4e9d-9aac-10a57cac12c7", "content": "", "creation_timestamp": "2025-08-18T18:31:00.000000Z"}, {"uuid": "abb7a155-0484-46fc-9ae8-d508546c46f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ljk63zyx5hs2", "content": "", "creation_timestamp": "2025-03-04T09:44:36.127338Z"}, {"uuid": "ac359f53-c0b5-4936-b253-04872048b35d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lja2crjlstq2", "content": "", "creation_timestamp": "2025-02-28T09:02:51.599710Z"}, {"uuid": "4e069fd2-4022-4755-9191-5458905dc122", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "published-proof-of-concept", "source": "Telegram/7eRZIkWg2tEfjiyCZ07Sn8ZocqvQkPDJPk9hAGHLN0MhRp4", "content": "", "creation_timestamp": "2025-02-28T17:47:37.000000Z"}, {"uuid": "ef9fd7bc-ec1b-4b40-ab56-968dd5747495", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://t.me/cvedetector/18831", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27364 - Caldera Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27364 \nPublished : Feb. 24, 2025, 7:15 p.m. | 1\u00a0hour, 53\u00a0minutes ago \nDescription : In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution (RCE) vulnerability was found in the dynamic agent (implant) compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is running on via a crafted web request to the Caldera server API used for compiling and downloading of Caldera's Sandcat or Manx agent (implants). This web request can use the gcc -extldflags linker flag with sub-commands. \nSeverity: 10.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-24T22:08:42.000000Z"}, {"uuid": "3e74fa77-7b0d-4b18-9696-f8b90a5707ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5206", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27364\n\ud83d\udd25 CVSS Score: 10 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution (RCE) vulnerability was found in the dynamic agent (implant) compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is running on via a crafted web request to the Caldera server API used for compiling and downloading of Caldera's Sandcat or Manx agent (implants). This web request can use the gcc -extldflags linker flag with sub-commands.\n\ud83d\udccf Published: 2025-02-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-24T19:08:07.220Z\n\ud83d\udd17 References:\n1. https://github.com/mitre/caldera/releases\n2. https://github.com/mitre/caldera/security\n3. https://medium.com/@mitrecaldera/mitre-caldera-security-advisory-remote-code-execution-cve-2025-27364-5f679e2e2a0e\n4. https://github.com/mitre/caldera/commit/35bc06e42e19fe7efbc008999b9f993b1b7109c0\n5. https://github.com/mitre/caldera/pull/3131/commits/61de40f92a595bed462372a5e676c2e5a32d1050\n6. https://github.com/mitre/caldera/pull/3129", "creation_timestamp": "2025-02-24T19:22:20.000000Z"}, {"uuid": "55040bbf-2947-4805-8979-299b79145e8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "seen", "source": "https://t.me/DarkWebInformer_News/1130", "content": "\ud83d\udea8 News Alert!\n\nSource: Dark Web Informer - Cyber Threat Intelligence\nTitle: CVE-2025-27364: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')\nLink: https://darkwebinformer.com/cve-2025-27364-improper-neutralization-of-special-elements-used-in-an-os-command-os-command-injection/", "creation_timestamp": "2025-02-24T20:04:29.000000Z"}, {"uuid": "9ae95246-4f52-4e0e-a0e3-5eebc5e84f1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27364", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/13261", "content": "\ud83d\udea8CVE-2025-27364: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')\n\nCVSS: 10\n\nhttps://darkwebinformer.com/cve-2025-27364-improper-neutralization-of-special-elements-used-in-an-os-command-os-command-injection/", "creation_timestamp": "2025-02-24T21:04:08.000000Z"}]}