Published: 14/10/2020 Updated: 19/10/2020
CVSS v2 Base Score: 5.5 | Impact Score: 4.9 | Exploitability Score: 8
CVSS v3 Base Score: 8.1 | Impact Score: 5.2 | Exploitability Score: 2.8
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N

Vulnerability Summary

A SQL Injection issue in Rapid7 Nexpose version before 6.6.49 that may have allowed an authenticated user with a low permission level to access resources & make changes they should not have been able to access.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

rapid7 nexpose