rapid7 Latest Vulnerabilities
Latest vulnerabilities published by rapid7
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Stored Cross-Site Scripting Vulnerability in Rapid7 AppSpider Pro
CVE-2025-4951Rapid7Appspider Pro4.6MEDIUMImproper Access Control in Velociraptor's VQL Shell Feature
CVE-2025-0914Rapid7Velociraptor3.8LOWPrivilege Escalation Vulnerability Affects Rapid7 Insight Platform
CVE-2024-11401Rapid7Insight PlatformVelociraptor Installer Vulnerability Allows Local Users to Execute Arbitrary Code
CVE-2024-10526Rapid7VelociraptorMissing Authorization Vulnerability Affects Rapid7 Insight Platform
CVE-2024-8042Rapid7Insight Platform3.1LOWRemote Code Execution Vulnerability in Nexpose Security Management Software
CVE-2019-19760Rapid7InsightVM Console Vulnerability Could Lead to CPU Overload and Crashes
CVE-2024-6504Rapid7Insightvm5.3MEDIUMLow-Privileged User Threat in PAM
CVE-2024-38496Rapid7Key Exposure in Logging.json Allows High Privileges Access
CVE-2024-3185Rapid7Insight Agent6.8MEDIUMPrivilege Escalation Vulnerability in Rapid7 Minerva Armor
CVE-2024-0394Rapid7Minerva ArmorSensitive Information Exposure Vulnerability in Rapid7's InsightVM Login Page
CVE-2024-2745Rapid7Insightvm3.3LOWRapid7 Velociraptor Reflected XSS
CVE-2023-5950Rapid7Velociraptor8.6HIGHRapid7 Insight Agent Directory Traversal
CVE-2023-2273Rapid7Insight Agent5.8MEDIUMVelociraptor crashes while parsing some malformed PE or OLE files.
CVE-2023-2226Rapid7Velociraptor3.3LOWRapid7 Nexpose Forced Browsing
CVE-2023-1699Rapid7Nexpose4.3MEDIUMRapid7 InsightVM Insufficient Session Expiration
CVE-2021-3844Rapid7Insightvm5.7MEDIUMRapid7 InsightCloudSec getattr() method access
CVE-2023-1304Rapid7InsightcloudsecπΎπ‘8.8HIGHRapid7 InsightCloudSec box object access
CVE-2023-1305Rapid7InsightcloudsecπΎπ‘8.1HIGHRapid7 InsightCloudSec resource.db() method access
CVE-2023-1306Rapid7InsightcloudsecπΎπ‘8.8HIGHRapid7 Nexpose Uncontrolled URL Redirect
CVE-2023-0681Rapid7Nexpose4.3MEDIUMRapid7 Metasploit Pro Stored XSS
CVE-2023-0599Rapid7Metasploit Pro6.1MEDIUMRapid7 Nexpose Certificate Validation Issue
CVE-2022-3913Rapid7Nexpose5.3MEDIUMRapid7 Velociraptor directory traversal in client ID parameter
CVE-2023-0290Rapid7Velociraptor4.3MEDIUMInsufficient permission check in the VQL copy() function
CVE-2023-0242Rapid7Velociraptor8.8HIGHRapid7 Nexpose Virtual Appliance Duplicate SSH Host Key
CVE-2017-5242Rapid7Nexpose Virtual Appliance7.7HIGH