Security Advisory

CVE-2020-7382

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-03 13:55:26

Last updated 2024-08-04 09:25:49

Assigner rapid7

State PUBLISHED

Description

Rapid7 Nexpose installer version prior to 6.6.40 contains an Unquoted Search Path which may allow an attacker on the local machine to insert an arbitrary file into the executable path. This issue affects: Rapid7 Nexpose versions prior to 6.6.40.

← Browse all CVEs View on cve.org ↗