HIGHVulnerability
Verified
Global
NVD HIGH: CVE-2026-8664 — OS Command Injection vulnerability in Rapid7 InsightConnect Finger Plugin on Lin...
·Source: NIST NVD
Updated:
Executive Summary
OS Command Injection vulnerability in Rapid7 InsightConnect Finger Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the user or host parameters due to insufficient input validation in shell command construction.
Analysis
OS Command Injection vulnerability in Rapid7 InsightConnect Finger Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the user or host parameters due to insufficient input validation in shell command construction. CVSS Score: 6. Published: 2026-06-25T02:16:35.227.