Rule Category

POLICY-OTHER --

Alert Message

POLICY-OTHER GoCast HTTP API unauthenticated command execution attempt

Rule Explanation

This rule detects the attempted creating of an "exec" type monitor via the GoCast HTTP API. As of version 1.1.3 this API does not support authentication and will directly execute any command sent via this monitor type.

What To Look For

This rule detects the attempted creating of an "exec" type monitor via the GoCast HTTP API.

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

Additional Links

Rule Vulnerability

N/A

Not Applicable

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2020-11624
Loading description
CVE-2018-6530
Loading description
CVE-2023-5360
Loading description
CVE-2024-21855
Loading description