VYPR
Unrated severityNVD Advisory· Published Nov 28, 2018· Updated Sep 17, 2024

CVE-2018-5559

CVE-2018-5559

Description

In Rapid7 Komand version 0.41.0 and prior, certain endpoints that are able to list the always encrypted-at-rest connection data could return some configurations of connection data without obscuring sensitive data from the API response sent over an encrypted channel. This issue does not affect Rapid7 Komand version 0.42.0 and later versions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Rapid7/Komandllm-create2 versions
    <=0.41.0+ 1 more
    • (no CPE)range: <=0.41.0
    • (no CPE)range: 0.41.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.