Browse all 3 CVE security advisories affecting NetCat. AI-powered Chinese analysis, POCs, and references for each vulnerability.
NetCat serves as a versatile networking utility for reading and writing data across network connections, commonly used for debugging, scripting, and security testing. Historically, it has been associated with remote code execution vulnerabilities due to improper input handling and insecure service configurations. Privilege escalation risks have also been documented when NetCat is used with elevated privileges or in conjunction with other tools. While no major public incidents are widely reported, its three CVEs highlight potential security flaws in buffer handling and service implementation. The tool's dual-use nature makes it popular among both security professionals and malicious actors, emphasizing the need for careful configuration and monitoring in environments where it's deployed.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-8653 | Netcat CMS: multiple reflected cross-site scripting vulnerabilities in netshop module — NetCat CMSCWE-79 | 6.1AI | MediumAI | 2024-09-19 |
| CVE-2024-8652 | Netcat CMS: reflected cross-site scripting in openstat module — NetCat CMSCWE-79 | 6.1AI | MediumAI | 2024-09-19 |
| CVE-2024-8651 | Netcat CMS: user enumeration — NetCat CMSCWE-204 | 5.3AI | MediumAI | 2024-09-19 |
This page lists every published CVE security advisory associated with NetCat. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.