CVE-2024-30850 - Vulnerability Details

Description

DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2024-33434. Reason: This record is a duplicate of CVE-2024-33434. Notes: All CVE users should reference CVE-2024-33434 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage.

Published: 2024-04-12

Score: n/a

EPSS: 80.5% High

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Github GHSA	GHSA-p3j6-f45h-hw5f	tiagorlampert CHAOS vulnerable to command injections

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.80454.

Key SSVC decision points have not yet been added.

References

No reference.

History

Fri, 03 Apr 2026 20:15:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-77
CPEs	cpe:2.3:a:tiagorlampert:chaos:-:::::::* cpe:2.3:a:tiagorlampert:chaos:5.0.1:::::::*
Vendors & Products	Tiagorlampert Tiagorlampert chaos
References	https://blog.chebuya.com/posts/remote-code-execution-on-chaos-rat-via-spoofed-agents/
Metrics	cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 03 Apr 2026 19:00:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:a:tiagorlampert:chaos:-:::::::*
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 03 Apr 2026 17:45:00 +0000

Type	Values Removed	Values Added
Description	An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go	DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2024-33434. Reason: This record is a duplicate of CVE-2024-33434. Notes: All CVE users should reference CVE-2024-33434 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage.

Wed, 16 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.7441}`	epss `{'score': 0.73966}`

Tue, 17 Jun 2025 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Tiagorlampert Tiagorlampert chaos
CPEs		cpe:2.3:a:tiagorlampert:chaos:5.0.1:::::::*
Vendors & Products		Tiagorlampert Tiagorlampert chaos

Wed, 21 Aug 2024 21:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-77
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}`

Subscriptions

No data.

MITRE

Status: REJECTED

Assigner: mitre

Published: 2024-04-12T00:00:00.000Z

Updated: 2026-04-03T18:08:37.213Z

Reserved: 2024-03-27T00:00:00.000Z

Link: CVE-2024-30850

Vulnrichment

Updated:

NVD

Status : Rejected

Published: 2024-04-12T06:15:06.943

Modified: 2026-04-03T19:16:58.563

Link: CVE-2024-30850

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object