CVE-2022-35631

On MacOS and Linux, it may be possible to perform a symlink attack by replacing this predictable file name with a symlink to another file and have the Velociraptor client overwrite the other file. This issue was resolved in Velociraptor 0.6.5-2.

Published: Jul 29, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-35631
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CWEs:

CWE-59

Affected Software
References

Software	From	Fixed in
rapid7 / velociraptor	-	0.6.5-2

https://www.rapid7.com/blog/post/2022/07/26/cve-2022-35629-35632-velociraptor-multiple-vulnerabilities-fixed/

Vulnerability Database

289,697

CVE-2022-35631