CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-5244
https://notcve.org/view.php?id=CVE-2017-5244
15 Jun 2017 — Routes used to stop running Metasploit tasks (either particular ones or all tasks) allowed GET requests. Only POST requests should have been allowed, as the stop/stop_all routes change the state of the service. This could have allowed an attacker to stop currently-running Metasploit tasks by getting an authenticated user to execute JavaScript. As of Metasploit 4.14.0 (Update 2017061301), the routes for stopping tasks only allow POST requests, which validate the presence of a secret token to prevent CSRF att... • http://www.securityfocus.com/bid/99082 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5243
https://notcve.org/view.php?id=CVE-2017-5243
06 Jun 2017 — The default SSH configuration in Rapid7 Nexpose hardware appliances shipped before June 2017 does not specify desired algorithms for key exchange and other important functions. As a result, it falls back to allowing ALL algorithms supported by the relevant version of OpenSSH and makes the installations vulnerable to a range of MITM, downgrade, and decryption attacks. La configuración por defecto de SSH en los dispositivos hardware con Nexpose de Rapid7 enviados antes de Junio de 2017 no especifica los algor... • https://community.rapid7.com/community/nexpose/blog/2017/05/31/r7-2017-13-nexpose-hardware-appliance-ssh-enabled-obsolete-algorithms-cve-2017-5243 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5236
https://notcve.org/view.php?id=CVE-2017-5236
03 May 2017 — Editions of Rapid7 AppSpider Pro installers prior to version 6.14.060 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer. Las ediciones de los instaladores de Rapid7 AppSpider Pro anteriores a la versión 6.14.060 contienen una vulnerabilidad de precarga de DLL, en la que es posible que el instalador cargue una DLL malintencionada ubicada en el directorio de trabajo actual del instalador. • https://community.rapid7.com/docs/DOC-3631 • CWE-426: Untrusted Search Path •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5240
https://notcve.org/view.php?id=CVE-2017-5240
03 May 2017 — Editions of Rapid7 AppSpider Pro prior to version 6.14.060 contain a heap-based buffer overflow in the FLAnalyzer.exe component. A malicious or malformed Flash source file can cause a denial of service condition when parsed by this component, causing the application to crash. Las ediciones de Rapid7 AppSpider Pro anteriores a la versión 6.14.060 contienen un desbordamiento de buffer basado en memoria dinámica en el componente FLAnalyzer.exe. Un archivo de código fuente Flash malicioso o mal formado puede ca... • https://community.rapid7.com/docs/DOC-3631 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5235
https://notcve.org/view.php?id=CVE-2017-5235
02 Mar 2017 — Rapid7 Metasploit Pro installers prior to version 4.13.0-2017022101 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer. Instaladores de Rapid7 Metasploit Pro anteriores a la versión 4.13.0-2017022101 contienen una vulnerabilidad de precarga de DLL, donde es posible que el instalador cargue una DLL maliciosa ubicada en el directorio de trabajo actual del instalador. • http://www.securityfocus.com/bid/96548 • CWE-426: Untrusted Search Path •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5231
https://notcve.org/view.php?id=CVE-2017-5231
02 Mar 2017 — All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 contain a directory traversal vulnerability in the Meterpreter stdapi CommandDispatcher.cmd_download() function. By using a specially-crafted build of Meterpreter, it is possible to write to an arbitrary directory on the Metasploit console with the permissions of the running Metasploit instance. Todas las ediciones de Rapid7 Metasploit anteriores a la versión 4.13.0-2017020701 contienen una vulnerabilidad de salto de directorio en la funci... • http://www.securityfocus.com/bid/96954 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5230
https://notcve.org/view.php?id=CVE-2017-5230
02 Mar 2017 — The Java keystore in all versions and editions of Rapid7 Nexpose prior to 6.4.50 is encrypted with a static password of 'r@p1d7k3y5t0r3' which is not modifiable by the user. The keystore provides storage for saved scan credentials in an otherwise secure location on disk. El almacén de claves de Java en todas las versiones y ediciones de Nexpose anterior a versión 6.4.50 de Rapid7, es cifrado con una contraseña estática de “r@p1d7k3y5t0r3” que no es modificable por el usuario. El almacén de claves provee alm... • http://www.securityfocus.com/bid/96956 • CWE-798: Use of Hard-coded Credentials •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5229
https://notcve.org/view.php?id=CVE-2017-5229
02 Mar 2017 — All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 contain a directory traversal vulnerability in the Meterpreter extapi Clipboard.parse_dump() function. By using a specially-crafted build of Meterpreter, it is possible to write to an arbitrary directory on the Metasploit console with the permissions of the running Metasploit instance. Todas las ediciones de Rapid7 Metasploit anteriores a la versión 4.13.0-2017020701 contienen una vulnerabilidad de salto de directorio en la función Meterpr... • http://www.securityfocus.com/bid/96954 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5233
https://notcve.org/view.php?id=CVE-2017-5233
02 Mar 2017 — Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer. Instaladores de Rapid7 AppSpider Pro anteriores a la versión 6.14.053 contienen una vulnerabilidad de precarga de DLL, donde es posible que el instalador cargue una DLL maliciosa ubicada en el directorio de trabajo actual del instalador. • http://www.securityfocus.com/bid/96957 • CWE-426: Untrusted Search Path •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5232
https://notcve.org/view.php?id=CVE-2017-5232
02 Mar 2017 — All editions of Rapid7 Nexpose installers prior to version 6.4.24 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer. Todas las ediciones de los instaladores de Rapid7 Nexpose anteriores a la versión 6.4.24 contienen una vulnerabilidad de precarga de DLL, donde es posible que el instalador cargue una DLL maliciosa ubicada en el directorio de trabajo actual del instalador. • http://www.securityfocus.com/bid/96956 • CWE-426: Untrusted Search Path •