Vulnerability in Rapid7 Velociraptor
CVE-2024-10526
Rapid7 Velociraptor MSI Installer versions below 0.73.3 suffer from a vulnerability whereby it creates the installation directory with WRITE_DACL permission to the BUILTIN\\Users group. This allows local users who are not administrators to…
EPSS: 0.000 (6.5th percentile) — read the EPSS interpretation.
Affected products
- Rapid7 Velociraptor — versions <0.73.2