CVE-2026-8795 PUBLISHED

Assigner: rapid7
Reserved: 17.05.2026 Published: 09.06.2026 Updated: 09.06.2026

A YAML injection vulnerability exists in the Windows.Collectors.Remapping artifact of Rapid7 Velociraptor before version 0.76.6. The hostname field in client_info.json inside a collection ZIP is inserted into a YAML template via Go's text/template without escaping. An attacker providing a crafted collection ZIP can leverage literal double quotes and newlines in the hostname to break out of the YAML quoted string and inject a new mount remapping entry. When an analyst applies the generated remapping file with --remap, arbitrary VQL executes on their machine with NullACLManager (all permissions granted, unsandboxed).

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS Score: 7.8

Attack Vector	Local	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	None	Integrity Impact	High
User Interaction	Required	Availability Impact	High

CVSS 3.1

Product Status

Vendor	Rapid7
Product	Velociraptor
Versions	Default: unaffected affected from 0 to 0.76.6 (excl.)

Credits

Artificial Intelligence finder

References

Velociraptor Security Advisory CVE-2026-8795

Problem Types

CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE
CWE-94: Improper Control of Generation of Code ('Code Injection') CWE
CWE-116: Improper Encoding or Escaping of Output CWE

Impacts

CAPEC-549: Local Execution of Code