VYPR

Nexpose installers

by Rapid7

CVEs (1)

  • CVE-2017-5232HigMar 2, 2017
    risk 0.51cvss 7.8epss 0.01

    All editions of Rapid7 Nexpose installers prior to version 6.4.24 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer.