Rapid7 Vulnérabilités

Chronologie

Taper

Not Defined	61
Cloud Software	3

Produit

Rapid7 Nexpose	18
Rapid7 Metasploit Framework	13
Rapid7 InsightVM	8
Rapid7 Insight Agent	5
Rapid7 Velociraptor	4

Contre-mesures

Official Fix	48
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	16

Exploitabilité

High	0
Functional	0
Proof-of-Concept	8
Unproven	0
Not Defined	56

Vecteur d'accès

Not Defined	0
Physical	0
Local	20
Adjacent	5
Network	39

Authentification

Not Defined	0
High	6
Low	37
None	21

Interaction de l'utilisateur

Not Defined	0
Required	25
None	39

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	1
≤4	7
≤5	14
≤6	7
≤7	23
≤8	11
≤9	1
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	1
≤4	9
≤5	13
≤6	13
≤7	21
≤8	6
≤9	1
≤10	0

VulDB

≤1	0
≤2	0
≤3	4
≤4	9
≤5	17
≤6	19
≤7	9
≤8	6
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	2
≤5	3
≤6	5
≤7	8
≤8	18
≤9	11
≤10	2

CNA

≤1	0
≤2	0
≤3	0
≤4	10
≤5	4
≤6	5
≤7	1
≤8	5
≤9	2
≤10	0

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	20
<2k	35
<5k	6
<10k	2
<25k	1
<50k	0
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	62
<2k	1
<5k	0
<10k	1
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (16): AppSpider (1), AppSpider Pro (3), Insight Agent (5), InsightAppSec (1), InsightCloudSec (3), Insight Collector (1), InsightVM (8), Komand (1), MetaSploit Framework (1), Metasploit (1), Metasploit Framework (13), Metasploit Pro (4), Minerva Armor (1), Nexpose (18), Nexpose Hardware Appliance (1), Velociraptor (4)

Publié	Base	Temp	Vulnérabilité	Prod	Exp	Con	EPSS	CTI	CVE
03/04/2024	7.8	7.6	Rapid7 Minerva Armor OpenSSL elévation de privilèges	Inconnue	Not Defined	Official Fix	0.00043	0.04	CVE-2024-0394
02/04/2024	3.3	3.2	Rapid7 InsightVM Maintenance Mode Login Page divulgation de l'information	Inconnue	Not Defined	Official Fix	0.00043	0.04	CVE-2024-2745
06/11/2023	6.3	6.3	Rapid7 Velociraptor cross site scripting	Inconnue	Not Defined	Official Fix	0.00050	0.02	CVE-2023-5950
26/04/2023	6.9	6.9	Rapid7 Insight Agent Token io.ioutil.WriteFile directory traversal	Inconnue	Not Defined	Not Defined	0.00050	0.02	CVE-2023-2273
21/04/2023	4.0	3.9	Rapid7 Velociraptor PE Parser/OLE Parser divulgation de l'information	Inconnue	Not Defined	Official Fix	0.00045	0.02	CVE-2023-2226
30/03/2023	6.1	6.1	Rapid7 Nexpose elévation de privilèges	Inconnue	Not Defined	Official Fix	0.00166	0.03	CVE-2023-1699
24/03/2023	4.8	4.8	Rapid7 InsightVM authentification faible	Inconnue	Not Defined	Not Defined	0.00074	0.00	CVE-2021-3844
22/03/2023	6.8	6.5	Rapid7 InsightCloudSec Box Object Privilege Escalation	Cloud Software	Proof-of-Concept	Official Fix	0.00067	0.00	CVE-2023-1305
22/03/2023	7.1	6.9	Rapid7 InsightCloudSec Jinja Template getattr elévation de privilèges	Cloud Software	Proof-of-Concept	Official Fix	0.00092	0.00	CVE-2023-1304
22/03/2023	7.5	7.2	Rapid7 InsightCloudSec Jinja Template resource.db elévation de privilèges	Cloud Software	Proof-of-Concept	Official Fix	0.00123	0.00	CVE-2023-1306

54 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 54 results.

◂ PrécédentAperçuSuivant ▸

Interested in the pricing of exploits?

See the underground prices here!