rapid7 Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by rapid7
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
OS Command Injection Vulnerability in Rapid7 InsightConnect Traceroute Plugin for Linux
CVE-2026-8666Rapid7Insightconnect Tracero...7.7HIGHOS Command Injection Vulnerability in Rapid7 InsightConnect AWK Plugin for Linux
CVE-2026-8592Rapid7Insightconnect Awk Plugin7.7HIGHOS Command Injection Vulnerability in Rapid7 InsightConnect Translate Plugin on Linux
CVE-2026-8665Rapid7Insightconnect Tr Plugin7.7HIGHOS Command Injection in Rapid7 InsightConnect Ping Plugin for Linux
CVE-2026-8660Rapid7Insightconnect Ping Pl...7.7HIGHArbitrary File Write Vulnerability in Rapid7 InsightConnect Sed Plugin for Linux
CVE-2026-9154Rapid7Insightconnect Sed Plugin7.1HIGHOS Command Injection in Rapid7 InsightConnect Sed Plugin for Linux
CVE-2026-9155Rapid7Insightconnect Sed Plugin8.8HIGHYAML Injection Vulnerability in Rapid7 Velociraptor
CVE-2026-8795Rapid7Velociraptor7.8HIGHLocal Privilege Escalation Vulnerability in Rapid7 Metasploit Pro
CVE-2026-7373Rapid7Metasploit Pro8.5HIGHLocal Privilege Escalation in Rapid7 Insight Agent for Windows
CVE-2026-6482Rapid7Insight Agent8.5HIGHVulnerability in Velociraptor Plugin Allows Unauthorized Access to Multiple Organizations
CVE-2026-6290Rapid7Velociraptor8HIGHImproper Input Validation in Rapid7 Velociraptor Server
CVE-2026-5329Rapid7Velociraptor8.5HIGHSignature Verification Issue in Rapid7 InsightVM Affects Account Security
CVE-2026-1568Rapid7Vulnerability Management9.6CRITICALRapid7 Velociraptor Reflected XSS
CVE-2023-5950Rapid7Velociraptor8.6HIGHRapid7 InsightCloudSec getattr() method access
CVE-2023-1304Rapid7InsightcloudsecπΎπ‘8.8HIGHRapid7 InsightCloudSec box object access
CVE-2023-1305Rapid7InsightcloudsecπΎπ‘8.1HIGHRapid7 InsightCloudSec resource.db() method access
CVE-2023-1306Rapid7InsightcloudsecπΎπ‘8.8HIGHInsufficient permission check in the VQL copy() function
CVE-2023-0242Rapid7Velociraptor8.8HIGHRapid7 Nexpose Virtual Appliance Duplicate SSH Host Key
CVE-2017-5242Rapid7Nexpose Virtual Appliance7.7HIGHRapid7 Insight Agent Privilege Escalation
CVE-2021-4007Rapid7Insight Agent7.8HIGHMetasploit Framework 'drb_remote_codeexec' code execution
CVE-2020-7385Rapid7Metasploit Framework8.1HIGHClient-Side Command Injection in Rapid7 Metasploit
CVE-2020-7384Rapid7MetasploitπΎπ‘EPSS 30%7HIGHRapid7 Metasploit HTTP Handler Denial of Service
CVE-2019-5645Rapid7Metasploit FrameworkEPSS 41%7.5HIGHRapid7 Metasploit Framework Relative Path Traversal in enum_osx module
CVE-2020-7376Rapid7Metasploit Framework7.1HIGHRapid7 Metasploit Framework Relative Path Traversal in telpho10_credential_dump module
CVE-2020-7377Rapid7Metasploit Framework8.1HIGHRapid7 Nexpose Insufficient Session Management
CVE-2019-5638Rapid7Nexpose8.7HIGH