HIGHVulnerability
Verified
Global

NVD HIGH: CVE-2026-8659 — OS Command Injection vulnerability in Rapid7 InsightConnect SQLmap Plugin on Lin...

·Source: NIST NVD

Updated:

Executive Summary

OS Command Injection vulnerability in Rapid7 InsightConnect SQLmap Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the api_host or api_port parameters during connection configuration due to insufficient input validation.

Analysis

OS Command Injection vulnerability in Rapid7 InsightConnect SQLmap Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the api_host or api_port parameters during connection configuration due to insufficient input validation. CVSS Score: 6. Published: 2026-06-25T00:17:47.937.

Indicators of Compromise (1)

CVE (1)
CVE-2026-8659
Source Attribution

Originally published by NIST NVD on Jun 25, 2026. Verified by: NIST.

Related Threats