CVEs-PoC/2021/CVE-2021-36798.md

### [CVE-2021-36798](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36798)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4.2 and 4.3. It allows remote attackers to crash the C2 server thread and block beacons' communication with it.

### POC

#### Reference
- https://labs.sentinelone.com/hotcobalt-new-cobalt-strike-dos-vulnerability-that-lets-you-halt-operations/

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/JamVayne/CobaltStrikeDos
- https://github.com/M-Kings/CVE-2021-36798
- https://github.com/NaInSec/CVE-PoC-in-GitHub
- https://github.com/SYRTI/POC_to_review
- https://github.com/WhooAmii/POC_to_review
- https://github.com/fei9747/Awesome-CobaltStrike
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/sponkmonk/CobaltSploit
- https://github.com/trhacknon/Pocingit
- https://github.com/zecool/cve
- https://github.com/zer0yu/Awesome-CobaltStrike