VYPR
Unrated severityNVD Advisory· Published Oct 29, 2020· Updated Aug 4, 2024

Client-Side Command Injection in Rapid7 Metasploit

CVE-2020-7384

Description

Rapid7's Metasploit msfvenom framework handles APK files in a way that allows for a malicious user to craft and publish a file that would execute arbitrary commands on a victim's machine.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Rapid7/Metasploitllm-fuzzy2 versions
    ≤ 6.0.11+ 1 more
    • (no CPE)range: ≤ 6.0.11
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.