Description
Rapid7 Nexpose installer version prior to 6.6.40 contains an Unquoted Search Path which may allow an attacker on the local machine to insert an arbitrary file into the executable path. This issue affects: Rapid7 Nexpose versions prior to 6.6.40.
References (1)
Core 1
Core References
Release Notes, Vendor Advisory x_refsource_misc
https://help.rapid7.com/insightvm/en-us/release-notes/index.html?pid=6.6.40
Scores
CVSS v3
6.8
EPSS
0.0029
EPSS Percentile
20.3%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Details
CWE
CWE-428
Status
published
Products (1)
rapid7/nexpose
< 6.6.40
Published
Sep 03, 2020
Tracked Since
Feb 18, 2026