HackTheBox: Kobold

River

2026-03-26

HTB

Arcane, Docker, Easy, HackTheBox", Linux, MCPJAM, PrivateBin

exploiting CVE-2026-23744 unauthenticated RCE in MCPJAM, pivoting through container bind mounts to leak PrivateBin config, then using Arcane to spin up a root container

HackTheBox: Kobold

This content is password protected.