Exploit for MITRE Caldera dynamic compilation command injection CVE-2025-27364

Name: Exploit for MITRE Caldera dynamic compilation command injection CVE-2025-27364
Rating: 5 (16 reviews)

2025-02-28 | CVSS 10.0

## https://sploitus.com/exploit?id=SAINT:4624377CAD604E92E76F7B90473F5A34
Added: 02/28/2025  


### Background

MITRE Caldera is a security platform for emulating adversaries. 

### Problem

The dynamic compilation functionality in the Manx and Sandcat agents is affected by an injection vulnerability which could allow remote command execution. 

### Resolution

Upgrade to Caldera 5.1.0 or higher. 

### References

https://medium.com/@mitrecaldera/mitre-caldera-security-advisory-remote-code-execution-cve-2025-27364-5f679e2e2a0e   


### Platforms

Linux