Lucene search
K

5 matches found

VulnCheck KEV
VulnCheck KEV
added 2025/10/22 12:0 a.m.10 views

VulnCheck KEV: CVE-2025-6264

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

9.8CVSS7.4AI score0.99962EPSS
In wildExploits26References9
NVD
NVD
added 2025/06/20 3:15 a.m.11 views

CVE-2025-6264

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

5.5CVSS0.00963EPSS
Exploits2References3
OSV
OSV
added 2025/06/20 3:15 a.m.5 views

CVE-2025-6264

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

5.5CVSS7.2AI score0.00963EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.9 views

PT-2025-26266

Name of the Vulnerable Software and Affected Versions Velociraptor affected versions not specified Description The issue concerns the Velociraptor's artifact collection feature, which allows users to collect and execute VQL queries packaged into artifacts from endpoints. These artifacts typically...

5.5CVSS6.8AI score0.00963EPSS
Exploits2References29
SUSE CVE
SUSE CVE
added 2023/02/15 3:21 a.m.3 views

SUSE CVE-2023-0290

Rapid7 Velociraptor did not properly sanitize the client ID parameter to the CreateCollection API, allowing a directory traversal in where the collection task could be written. It was possible to provide a client id of "../clients/server" to schedule the collection for the server as a server...

4.3CVSS4.7AI score0.00744EPSS
Exploits0References3
Rows per page
Query Builder