Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

NVD
NVDadded 2025/12/29 7:15 p.m.4 views

CVE-2025-14728

Rapid7 Velociraptor versions before 0.75.6 contain a directory traversal issue on Linux servers that allows a rogue client to upload a file which is written outside the datastore directory. Velociraptor is normally only allowed to write in the datastore directory. The issue occurs due to...

6.8CVSS0.00471EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/12/29 7:4 p.m.25 views

CVE-2025-14728 Rapid7 Velociraptor Directory Traversal Vulnerability

Rapid7 Velociraptor versions before 0.75.6 contain a directory traversal issue on Linux servers that allows a rogue client to upload a file which is written outside the datastore directory. Velociraptor is normally only allowed to write in the datastore directory. The issue occurs due to...

6.8CVSS0.00471EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/12/29 12:0 a.m.4 views

Rapid7 Velociraptor 安全漏洞

Rapid7 Velociraptor is a digital forensics and incident response platform from US-based Rapid7. A security vulnerability exists in Rapid7 Velociraptor versions prior to 0.75.6 that stems from insufficient directory name cleanup on Linux servers, which could lead to directory traversal and file...

6.8CVSS5.8AI score0.00471EPSS
Exploits1References2
Rows per page
Query Builder