Exploitation Summary
EIP tracks 1 public exploit for CVE-2026-1814. PoCs published by pbrass.
AI-analyzed exploit summary This Python script decrypts credentials stored in an XML file using a PKCS12 keystore, demonstrating an information leakage vulnerability (CVE-2026-1814). It extracts and decrypts encrypted credentials by leveraging cryptographic operations (RSA, AES-CBC) and PKCS#12 keystore parsing.
Description
Rapid7 Nexpose versions 6.4.50 and later are vulnerable to an insufficient entropy issue in the CredentialsKeyStorePassword.generateRandomPassword() method. When updating legacy keystore passwords, the application generates a new password with insufficient length (7-12 characters) and a static prefix 'p', resulting in a weak keyspace. An attacker with access to the nsc.ks file can brute-force this password using consumer-grade hardware to decrypt stored credentials.
Exploits (1)
This Python script decrypts credentials stored in an XML file using a PKCS12 keystore, demonstrating an information leakage vulnerability (CVE-2026-1814). It extracts and decrypts encrypted credentials by leveraging cryptographic operations (RSA, AES-CBC) and PKCS#12 keystore parsing.
References (1)
Scores
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N