3 matches found
CVE-2026-9154
CVE-2026-9154 concerns the Rapid7 InsightConnect Sed Plugin for Linux. The vulnerable component is the plugin’s expression parameter, enabling an authenticated attacker to perform arbitrary file writes to arbitrary file paths. Documented impact is high integrity risk and potential local file mani...
CVE-2026-9155
The CVE-2026-9155 issue affects the Rapid7 InsightConnect Sed Plugin running on Linux. It is a command-injection vulnerability in the expression parameter, caused by insufficient input validation, enabling authenticated attackers to run arbitrary OS commands on the host. The commonly cited score ...
CVE-2026-9153
CVE-2026-9153 affects the Rapid7 InsightConnect Sed Plugin on Linux. The vulnerability is an Arbitrary File Read caused by insufficient input validation in the expression parameter, exploitable by an authenticated attacker to read arbitrary files. Documents do not provide exploit details, affecte...