Lucene search
China National Vulnerability DatabaseCNVD-2021-101683HistoryDec 19, 2021 - 12:00 a.m.
Rapid7 Insight Agent Elevation of Privilege Vulnerability
2021-12-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.0004 Low
EPSS
Percentile
5.1%
Rapid7 Insight Agent is a lightweight software from Rapid7, Inc. An elevation of privilege vulnerability exists in Rapid7 Insight Agent, which stems from an uncontrolled DLL search path. A malicious attacker can exploit this vulnerability to elevate to SYSTEM privileges using Insight Agentβs startup conditions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Rapid7 Insight Agent >=3.0.1οΌ<3. | eq | 1.2.35 |
Related
cvelist
cvelist
CVE-2021-4007 Rapid7 Insight Agent Privilege Escalation
2021-12-10 00:00:00
cve
cve
CVE-2021-4007
2021-12-14 15:15:07
prion
prion
Input validation
2021-12-14 15:15:00
nvd
nvd
CVE-2021-4007
2021-12-14 15:15:07