EIP-2026-117832

PRE-CVE

Rapid7 Nexpose Installer 6.6.39 - 'nexposeengine' Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117832. PoCs published by LiquidWorm.

AI-analyzed exploit summary This is a writeup describing an unquoted service path vulnerability in Rapid7 Nexpose Installer versions <=6.6.39, which could allow local privilege escalation due to improper handling of paths with whitespace. The advisory includes details of the vulnerability and service configuration but does not contain executable exploit code.

Description

Rapid7 Nexpose Installer 6.6.39 - 'nexposeengine' Unquoted Service Path

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textlocalwindows

https://www.exploit-db.com/exploits/48808

View Code ZIP pw:eip

This is a writeup describing an unquoted service path vulnerability in Rapid7 Nexpose Installer versions <=6.6.39, which could allow local privilege escalation due to improper handling of paths with whitespace. The advisory includes details of the vulnerability and service configuration but does not contain executable exploit code.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Theoretical

Target: Rapid7 Nexpose Installer <=6.6.39

Auth required

Prerequisites: Local access to the target system · Ability to create executable files in the parent path

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026