Summary
A Proof of Concept (PoC) is available for CVE-2025-27364 in MITRE Caldera, a cybersecurity platform that automates security assessments and adversary emulation. This vulnerability, if exploited, could allow an attacker to execute remote code on affected devices.
Risk
Estimate of the impact of the vulnerability on the reference community: High (73.07)
Type
- Remote Code Execution
Affected products and/or versions
MITRE Caldera, version 5.0.0 and earlier
Mitigation actions
It is recommended to update vulnerable products to the most recent version made available at the link reported in the References section.
References
https://github.com/advisories/GHSA-3xgj-vqg4-h895
https://github.com/mitre/caldera/releases
1This estimate is made taking into account several parameters, including: CVSS, availability of patches/workarounds and PoC, diffusion of the affected software/devices in the reference community.
