| Max CVSS | 6.8 | Min CVSS | 6.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-5230 | 6.5 |
The Java keystore in all versions and editions of Rapid7 Nexpose prior to 6.4.50 is encrypted with a static password of 'r@p1d7k3y5t0r3' which is not modifiable by the user. The keystore provides storage for saved scan credentials in an otherwise sec
|
15-08-2017 - 01:29 | 02-03-2017 - 20:59 | |
| CVE-2017-5232 | 6.8 |
All editions of Rapid7 Nexpose installers prior to version 6.4.24 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer.
|
21-03-2017 - 01:59 | 02-03-2017 - 20:59 |