CVE-2024-41570 Information

Description

An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.

Reference

https://blog.chebuya.com/posts/server-side-request-forgery-on-havoc-c2/