Resource Exhaustion Vulnerability in Velociraptor by Velociraptor Team
CVE-2026-6948

4.9MEDIUM

Key Information:

Vendor: Rapid7
Status: Velociraptor
Vendor: CVE Published:; 3 May 2026

What is CVE-2026-6948?

The vulnerability found in Velociraptor versions prior to 0.76.4 revolves around resource exhaustion within the server's agent control channel. Malicious or improperly configured Velociraptor clients can exploit this vulnerability, sending specially crafted messages that may overwhelm the server's resources, leading to a potential server crash due to out-of-memory (OOM) conditions. Administrators are advised to update to version 0.76.4 or later to mitigate this risk.

Affected Version(s)

Velociraptor Linux 0 < 0.76.4

Velociraptor Linux 0 < 0.75.9

References

https://docs.velociraptor.app/announcements/advisories/cv...

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 3, 2026
Vulnerability Reserved
Apr 24, 2026

Credit

We thank Faisal Alhumaid (Faisal.alhumaid@hotmail.com) for reporting this issue responsibly.

We also thank Mika Jarvinen (mika.jarvinen@kapsi.fi) for reporting this issue responsibly at the same time.

CVE-2026-6948 Data

JSON

Rapid7

What is CVE-2026-6948?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit