6 matches found
EUVD-2018-17328
Malware in sbrugna...
Rapid7 Komand Information Disclosure Vulnerability
Rapid7 Komand is a suite of IT security automation solutions from Rapid7 USA. The product features task automation, malware identification, vulnerability patching and email threat identification. A security vulnerability exists in Rapid7 Komand 0.41.0 and prior versions. An attacker could exploit...
CVE-2018-5559
In Rapid7 Komand version 0.41.0 and prior, certain endpoints that are able to list the always encrypted-at-rest connection data could return some configurations of connection data without obscuring sensitive data from the API response sent over an encrypted channel. This issue does not affect...
CVE-2018-5559
In Rapid7 Komand version 0.41.0 and prior, certain endpoints that are able to list the always encrypted-at-rest connection data could return some configurations of connection data without obscuring sensitive data from the API response sent over an encrypted channel. This issue does not affect...
CVE-2018-5559
Affected software: Rapid7 Komand prior to 0.42.0. Vulnerability: information disclosure via endpoints that list always encrypted-at-rest connection data, potentially returning un-obscured sensitive data in the API response sent over an encrypted channel. Root cause (as stated): endpoints could ex...
CVE-2018-5559
In Rapid7 Komand version 0.41.0 and prior, certain endpoints that are able to list the always encrypted-at-rest connection data could return some configurations of connection data without obscuring sensitive data from the API response sent over an encrypted channel. This issue does not affect...