Insightappsec
Approved changes feed: RSS · Atom
cpe:2.3:a:rapid7:insightappsec:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Rapid7 (d570a41c-9d2a-5057-8a47-227f116734f8) |
|---|---|
| Product | Insightappsec (9f3fae14-d5f3-5d01-b5a2-7132ee4aceed) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-5631 |
vulnerable | 2026-06-03 14:40:35.872871 |
Rapid7 InsightAppSec Local Privilege Escalation
HIGH (7.8)
The Rapid7 InsightAppSec broker suffers from a DLL injection vulnerability in the 'prunsrv.exe' component of the product. If exploited, a local user of the system (who must already be authenticated to the operating system) can elevate their privileges with this vulnerability to the privilege level of InsightAppSec (usually, SYSTEM). This issue affects version 2019.06.24 and prior versions of the product.
Published: 2019-08-19T14:32:40.201Z
Updated: 2024-09-16T21:03:32.967Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.