Lucene search
K

15 matches found

Vulnrichment
Vulnrichment
added 2026/06/09 1:4 a.m.7 views

CVE-2026-8795

A YAML injection vulnerability exists in the Windows.Collectors.Remapping artifact of Rapid7 Velociraptor before version 0.76.6. The hostname field in clientinfo.json inside a collection ZIP is inserted into a YAML template via Go's text/template without escaping. An attacker providing a crafted...

7.8CVSS5.6AI score0.00148EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 1:4 a.m.12 views

EUVD-2026-35289

A YAML injection vulnerability exists in the Windows.Collectors.Remapping artifact of Rapid7 Velociraptor before version 0.76.6. The hostname field in clientinfo.json inside a collection ZIP is inserted into a YAML template via Go's text/template without escaping. An attacker providing a crafted...

7.8CVSS5.6AI score0.00148EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/06 6:30 p.m.7 views

EUVD-2026-27844

Velociraptor versions prior to 0.76.4 contain a cross organization authorization bypass in the HTTP API. A user with only the reader role in the root organization the lowest authenticated role, holding only READRESULTS permission can issue a single authenticated HTTP GET that can read any files...

6.8CVSS5.7AI score0.00236EPSS
Exploits0References2
NVD
NVD
added 2026/05/06 3:15 a.m.14 views

CVE-2026-7572

An off-by-one error CWE-193 in the ConsumeUnit16Array and ConsumeUnit64Array functions in Velocidex Velociraptor before version 0.76.5 on Windows and Linux allows a local attacker to cause a Denial of Service DoS via a process crash by providing a specially crafted .evtx file to the parseevtx VQL...

5.5CVSS0.00142EPSS
Exploits0References1
CVE
CVE
added 2026/05/03 11:55 p.m.20 views

CVE-2026-6948

CVE-2026-6948 affects Velociraptor servers prior to version 0.76.4, where the VQLResponse Result-Set Writer can allocate memory unboundedly in the agent control channel. A compromised Velociraptor client can trigger an Out-Of-Memory (OOM) condition, crashing the server by sending crafted messages...

4.9CVSS5.8AI score0.00344EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.5 views

Rapid7 Velociraptor < 0.74.3 Privilege Escalation

The version of Rapid7 Velociraptor installed on the remote host is prior to 0.74.3. It is, therefore, affected by privilege escalation vulnerability: - Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run...

5.5CVSS9.3AI score0.00963EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.17 views

EUVD-2023-0469

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00544EPSS
Exploits0References4
OSV
OSV
added 2025/07/28 7:57 p.m.3 views

GO-2025-3768 Velociraptor vulnerable to privilege escalation via UpdateConfig artifact in www.velocidex.com/golang/velociraptor

Velociraptor vulnerable to privilege escalation via UpdateConfig artifact in www.velocidex.com/golang/velociraptor...

5.5CVSS6.4AI score0.00963EPSS
Exploits2References4
Veracode
Veracode
added 2025/06/24 5:58 a.m.5 views

Privilege Escalation

www.velocidex.com/golang/velociraptor is vulnerable to Privilege Escalation The vulnerability is due to the failure to enforce required permissions on the Admin.Client.UpdateClientConfig artifact, allowing users with COLLECTCLIENT permissions to update client configurations and potentially execut...

5.5CVSS7.7AI score0.00963EPSS
Exploits2References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/06/23 8:39 a.m.5 views

CVE-2025-6264

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

5.5CVSS7.4AI score0.00963EPSS
Exploits2References1
Snyk
Snyk
added 2025/06/20 3:30 a.m.2 views

Incorrect Default Permissions

Overview Affected versions of this package are vulnerable to Incorrect Default Permissions via the Admin.Client.UpdateClientConfig artifact. An attacker can gain elevated privileges and execute arbitrary commands by exploiting insufficient permission checks when collecting artifacts from endpoint...

5.5CVSS7.7AI score0.00963EPSS
Exploits2References2
OSV
OSV
added 2025/06/20 3:30 a.m.5 views

GHSA-GPFC-MPH4-QM24 Velociraptor vulnerable to privilege escalation via UpdateConfig artifact

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

4.7CVSS7.3AI score0.00963EPSS
Exploits2References6
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.9 views

PT-2025-26266

Name of the Vulnerable Software and Affected Versions Velociraptor affected versions not specified Description The issue concerns the Velociraptor's artifact collection feature, which allows users to collect and execute VQL queries packaged into artifacts from endpoints. These artifacts typically...

5.5CVSS6.8AI score0.00963EPSS
Exploits2References29
Veracode
Veracode
added 2024/10/07 6:55 p.m.8 views

Authorization Bypass

www.velocidex.com/golang/velociraptor is vulnerable to Authorization Bypass. The vulnerability is due to improper permission checks in the copy VQL function, which applies checks for reading files but does not check for permission to write files, allowing low-privilege users to overwrite server...

8.8CVSS6.6AI score0.00544EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2022/07/29 12:0 a.m.4 views

Velocidex Velociraptor 后置链接漏洞

Velocidex Velociraptor is a tool from Velocidex Australia that uses Velociraptor Query Language VQL queries to gather host-based status information. A security vulnerability in Velocidex Velociraptor prior to version 0.6.5-2, which originated on MacOS and Linux, can be exploited to perform a...

5.5CVSS5.5AI score0.0041EPSS
Exploits0References2
Rows per page
Query Builder