Rapid7 Insightconnect Sed Plugin vulnerabilities
3 known vulnerabilities affecting rapid7/insightconnect_sed_plugin.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2026-9155P2HIGHCVSS 8.8fixed in 2.0.52026-06-25
CVE-2026-9155 [HIGH] CWE-78 CVE-2026-9155: OS Command Injection vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated
OS Command Injection vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the expression parameter due to insufficient input validation.
nvd
CVE-2026-9153P3MEDIUMCVSS 6.5fixed in 2.0.52026-06-25
CVE-2026-9153 [MEDIUM] CWE-22 CVE-2026-9153: Arbitrary File Read vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated
Arbitrary File Read vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to read arbitrary files via the expression parameter due to insufficient input validation.
nvd
CVE-2026-9154P3MEDIUMCVSS 6.5fixed in 2.0.52026-06-25
CVE-2026-9154 [MEDIUM] CWE-22 CVE-2026-9154: Arbitrary File Write vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated
Arbitrary File Write vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to write attacker-controlled content to arbitrary file paths via the expression parameter.
nvd