Known Vulnerabilities for Insight Agent by Rapid7

Listed below are 4 of the newest known vulnerabilities associated with "Insight Agent" by "Rapid7".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2022-0237	Rapid7 Insight Agent versions 3.1.2.38 and earlier suffer from a privilege escalation vulnerability, whereby an attacker can ...	7.8 - HIGH	2022-03-17	2022-03-24
CVE-2021-4016	Rapid7 Insight Agent, versions prior to 3.1.3, suffer from an improper access control vulnerability whereby, the user has acc...	3.3 - LOW	2022-01-21	2022-08-05
CVE-2021-4007	Rapid7 Insight Agent, versions 3.0.1 to 3.1.2.34, suffer from a local privilege escalation due to an uncontrolled DLL search ...	7.8 - HIGH	2021-12-14	2021-12-21
CVE-2019-5629	Rapid7 Insight Agent, version 2.6.3 and prior, suffers from a local privilege escalation due to an uncontrolled DLL search pa...	7.8 - HIGH	2019-07-13	2020-10-16

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Rapid7	Insight Agent	2.6.7	All	All	All
Application	Rapid7	Insight Agent	2.6.6	All	All	All
Application	Rapid7	Insight Agent	2.6.5	All	All	All
Application	Rapid7	Insight Agent	2.6.4	All	All	All
Application	Rapid7	Insight Agent	2.6.3	All	All	All
Application	Rapid7	Insight Agent	2.6.2	All	All	All
Application	Rapid7	Insight Agent	2.6.1	All	All	All
Application	Rapid7	Insight Agent	2.6.0	All	All	All
Application	Rapid7	Insight Agent	2.5.3	All	All	All
Application	Rapid7	Insight Agent	2.5.2	All	All	All