CVE-2020-7381 in Nexposeinformação

Sumário

de MITRE

In Rapid7 Nexpose installer versions prior to 6.6.40, the Nexpose installer calls an executable which can be placed in the appropriate directory by an attacker with access to the local machine. This would prevent the installer from distinguishing between a valid executable called during a Security Console installation and any arbitrary code executable using the same file name.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsável

Rapid7, Inc.

Reservar

21/01/2020

Moderação

aceite

Entrada

VDB-160713

CPE

pronto

EPSS

0.00676

KEV

não

Atividades

muito baixo

Fontes

Do you need the next level of professionalism?

Upgrade your account now!