VYPR
High severity7.8NVD Advisory· Published Mar 2, 2017· Updated Jun 17, 2026

CVE-2017-5234

CVE-2017-5234

Description

Rapid7 Insight Collector installers prior to version 1.0.16 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer.

Affected products

3
  • cpe:2.3:a:rapid7:insight_collector:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:rapid7:insight_collector:*:*:*:*:*:*:*:*range: <=1.0.15
    • (no CPE)range: <1.0.16
    • (no CPE)range: All versions prior to version 1.0.16

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.