CVE-2026-8795: CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in Rapid7 Velociraptor
CVE-2026-8795 is a high-severity YAML injection vulnerability in Rapid7 Velociraptor before version 0. 76. 6. It occurs in the Windows. Collectors. Remapping artifact where the hostname field from client_info. json inside a collection ZIP is inserted into a YAML template without proper escaping. An attacker can craft a collection ZIP with malicious hostname content to break out of the YAML quoted string and inject arbitrary mount remapping entries. When an analyst applies this remapping file with the --remap option, arbitrary VQL code executes with full permissions and no sandboxing, posing a significant risk.
AI Analysis
Technical Summary
This vulnerability arises from improper neutralization of special elements in output used by a downstream component (CWE-74). Specifically, the hostname field in client_info.json is inserted into a YAML template using Go's text/template without escaping special characters such as double quotes and newlines. This allows an attacker supplying a crafted collection ZIP to inject new mount remapping entries into the YAML file. When the analyst applies the remapping file with the --remap flag, the injected VQL code executes with NullACLManager privileges, granting all permissions without sandbox restrictions. The CVSS 3.1 score is 7.8 (High), reflecting local attack vector with low complexity, no privileges required, user interaction needed, and high impact on confidentiality, integrity, and availability.
Potential Impact
Successful exploitation allows an attacker to execute arbitrary VQL code on the analyst's machine with full permissions and no sandboxing. This can lead to complete compromise of the analyst's environment, including unauthorized data access, modification, and disruption of service. The attack requires the analyst to apply a maliciously crafted remapping file, making user interaction necessary.
Mitigation Recommendations
Patch status is not yet confirmed — no official fix or remediation level has been published by Rapid7 as of the provided data. Users should monitor Rapid7's advisories for updates and apply any forthcoming patches promptly. Until a fix is available, analysts should exercise caution when applying remapping files from untrusted sources and avoid using the --remap option with unverified collection ZIPs.
CVE-2026-8795: CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in Rapid7 Velociraptor
Description
CVE-2026-8795 is a high-severity YAML injection vulnerability in Rapid7 Velociraptor before version 0. 76. 6. It occurs in the Windows. Collectors. Remapping artifact where the hostname field from client_info. json inside a collection ZIP is inserted into a YAML template without proper escaping. An attacker can craft a collection ZIP with malicious hostname content to break out of the YAML quoted string and inject arbitrary mount remapping entries. When an analyst applies this remapping file with the --remap option, arbitrary VQL code executes with full permissions and no sandboxing, posing a significant risk.
CVSS v3.1
Score 7.8high
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability arises from improper neutralization of special elements in output used by a downstream component (CWE-74). Specifically, the hostname field in client_info.json is inserted into a YAML template using Go's text/template without escaping special characters such as double quotes and newlines. This allows an attacker supplying a crafted collection ZIP to inject new mount remapping entries into the YAML file. When the analyst applies the remapping file with the --remap flag, the injected VQL code executes with NullACLManager privileges, granting all permissions without sandbox restrictions. The CVSS 3.1 score is 7.8 (High), reflecting local attack vector with low complexity, no privileges required, user interaction needed, and high impact on confidentiality, integrity, and availability.
Potential Impact
Successful exploitation allows an attacker to execute arbitrary VQL code on the analyst's machine with full permissions and no sandboxing. This can lead to complete compromise of the analyst's environment, including unauthorized data access, modification, and disruption of service. The attack requires the analyst to apply a maliciously crafted remapping file, making user interaction necessary.
Mitigation Recommendations
Patch status is not yet confirmed — no official fix or remediation level has been published by Rapid7 as of the provided data. Users should monitor Rapid7's advisories for updates and apply any forthcoming patches promptly. Until a fix is available, analysts should exercise caution when applying remapping files from untrusted sources and avoid using the --remap option with unverified collection ZIPs.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- rapid7
- Date Reserved
- 2026-05-17T23:31:05.101Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a2769f0e29bf47b50f672ac
Added to database: 6/9/2026, 1:18:40 AM
Last enriched: 6/9/2026, 1:33:30 AM
Last updated: 6/9/2026, 2:25:30 AM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.