Every CVE whose affected-product data names Rapid7 Velociraptor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2023-0242 — CVSS 8.8 (high): Rapid7 Velociraptor allows users to be created with different privileges on the server. Administrators are generally allowed to run any…
CVE-2023-5950 — CVSS 8.6 (high): Rapid7 Velociraptor versions prior to 0.7.0-4 suffer from a reflected cross site scripting vulnerability. This vulnerability allows…
CVE-2026-5329 — CVSS 8.5 (high): Rapid7 Velociraptor versions prior to 0.76.2 contain an improper input validation vulnerability in the client monitoring message handler on…
CVE-2026-6290 — CVSS 8.0 (high): Velociraptor versions prior to 0.76.3 contain a vulnerability in the query() plugin which allows access to all orgs with the user's current…
CVE-2025-14728 — CVSS 6.8 (medium): Rapid7 Velociraptor versions before 0.75.6 contain a directory traversal issue on Linux servers that allows a rogue client to upload a file…
CVE-2022-35630 — CVSS 6.1 (medium): A cross-site scripting (XSS) issue in generating a collection report made it possible for malicious clients to inject JavaScript code into…
CVE-2022-35631 — CVSS 5.5 (medium): On MacOS and Linux, it may be possible to perform a symlink attack by replacing this predictable file name with a symlink to another file…
CVE-2025-6264 — CVSS 5.5 (medium): Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and…
CVE-2022-35629 — CVSS 5.4 (medium): Due to a bug in the handling of the communication between the client and server, it was possible for one client, already registered with…
CVE-2026-7573 — CVSS 5.0 (medium): An authorization bypass (CWE-639) in the GetUserRoles gRPC API endpoint in Velocidex Velociraptor below version 0.76.5 allows any…
CVE-2022-35632 — CVSS 4.8 (medium): The Velociraptor GUI contains an editor suggestion feature that can display the description field of a VQL function, plugin or artifact…
CVE-2026-7572 — CVSS 4.4 (medium): An off-by-one error (CWE-193) in the ConsumeUnit16Array and ConsumeUnit64Array functions in Velocidex Velociraptor before version 0.76.5 on…
CVE-2023-0290 — CVSS 4.3 (medium): Rapid7 Velociraptor did not properly sanitize the client ID parameter to the CreateCollection API, allowing a directory traversal in where…
CVE-2021-3619 — CVSS 3.5 (low): Rapid7 Velociraptor 0.5.9 and prior is vulnerable to a post-authentication persistent cross-site scripting (XSS) issue, where an…
CVE-2023-2226 — CVSS 3.3 (low): Due to insufficient validation in the PE and OLE parsers in Rapid7's Velociraptor versions earlier than 0.6.8 allows attacker to crash…