Package impact
GO / www.velocidex.com/golang/velociraptor
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-7573 | high | 7.7 | 7.7 | 29d ago | An authorization bypass (CWE-639) in the GetUserRoles gRPC API endpoint in Velocidex Velociraptor below version 0.76.5 allows any authenticated low-privilege user to retrieve the complete ACL policy … | |||
| CVE-2026-6863 | medium | 6.8 | 6.8 | 29d ago | Velocidex Velociraptor has an Incorrect Authorization issue | |||
| CVE-2026-7572 | medium | 5.5 | 5.5 | 29d ago | An off-by-one error (CWE-193) in the ConsumeUnit16Array and ConsumeUnit64Array functions in Velocidex Velociraptor before version 0.76.5 on Windows and Linux allows a local attacker to cause a Denial… |