Skip to content

Commit 96eb888

Browse files
authored
Fix summaries for pages referenced by the 'children' shortcode (Velocidex#1253)
Fixes all instances where "description=true" is used, and that summary fields are available in addition to description fields. Swapped order of preference in favour of Summary in the shortcode definition.
1 parent 141b18a commit 96eb888

29 files changed

Lines changed: 195 additions & 29 deletions

File tree

content/announcements/advisories/CVE-2023-0242/_index.md

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,9 @@
11
---
22
menutitle: "CVE-2023-0242"
33
title: "CVE-2023-0242 Insufficient Permission Check In The VQL Copy() Function"
4+
summary: |
5+
Improper Privilege Management vulnerability in Rapid7 Velociraptor in the copy() function.
6+
This issue affects Velociraptor: before 0.6.7-5.
47
description: |
58
Improper Privilege Management vulnerability in Rapid7 Velociraptor in the copy() function.
69
This issue affects Velociraptor: before 0.6.7-5.

content/announcements/advisories/CVE-2023-0290/_index.md

Lines changed: 8 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,8 +1,15 @@
11
---
22
menutitle: "CVE-2023-0290"
33
title: "CVE-2023-0290 Directory Traversal In Client Id Parameter"
4+
summary: |
5+
Velociraptor did not properly sanitize the client id parameter to
6+
the CreateCollection API allowing a directory traversal in where
7+
the collection task could be written.
8+
This issue affects Velociraptor: before 0.6.7-5.
49
description: |
5-
Velociraptor did not properly sanitize the client id parameter to the CreateCollection API allowing a directory traversal in where the collection task could be written.
10+
Velociraptor did not properly sanitize the client id parameter to
11+
the CreateCollection API allowing a directory traversal in where
12+
the collection task could be written.
613
This issue affects Velociraptor: before 0.6.7-5.
714
weight: 10
815
date: 2023-01-17T00:00:00Z

content/announcements/advisories/CVE-2023-2226/_index.md

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,11 @@
11
---
22
menutitle: "CVE-2023-2226"
33
title: "CVE-2023-2226 Velociraptor crashes while parsing some malformed PE or OLE files"
4+
summary: |
5+
Due to insufficient validation in the PE and OLE parsers in
6+
Rapid7's Velociraptor versions earlier than 0.6.8 allows attacker
7+
to crash Velociraptor during parsing of maliciously malformed
8+
files. This issue affects Velociraptor: before 0.6.8.
49
description: |
510
Due to insufficient validation in the PE and OLE parsers in
611
Rapid7's Velociraptor versions earlier than 0.6.8 allows attacker

content/announcements/advisories/CVE-2023-5950/_index.md

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,13 @@
11
---
22
menutitle: "CVE-2023-5950"
33
title: "CVE-2023-5950 Rapid7 Velociraptor Reflected XSS"
4+
summary: |
5+
Rapid7 Velociraptor versions prior to 0.7.0-4 suffer from a
6+
reflected cross site scripting vulnerability. This vulnerability
7+
allows attackers to inject JS into the error path, potentially
8+
leading to unauthorized execution of scripts within a user's web
9+
browser. This issue affects Velociraptor: before 0.7.0-4.
10+
Patches are also available for version 0.6.9 (0.6.9-1)
411
description: |
512
Rapid7 Velociraptor versions prior to 0.7.0-4 suffer from a
613
reflected cross site scripting vulnerability. This vulnerability

content/announcements/advisories/CVE-2024-10526/_index.md

Lines changed: 9 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,8 +1,16 @@
11
---
22
menutitle: "CVE-2024-10526"
33
title: "CVE-2024-10526 Local Privilege Escalation In Windows Velociraptor Service"
4+
summary: |
5+
By modifying Velociraptor's files, local users can subvert the
6+
binary and cause the Velociraptor service to execute arbitrary
7+
code as the SYSTEM user, or to replace the Velociraptor binary
8+
completely.
49
description: |
5-
The Velociraptor Windows MSI installer creates the installation directory with WRITE_DACL permission to the BUILTIN\\Users group. This allows local users who are not administrators to grant themselves the Full Control permission on Velociraptor's files. By modifying Velociraptor's files, local users can subvert the binary and cause the Velociraptor service to execute arbitrary code as the SYSTEM user, or to replace the Velociraptor binary completely.
10+
By modifying Velociraptor's files, local users can subvert the
11+
binary and cause the Velociraptor service to execute arbitrary
12+
code as the SYSTEM user, or to replace the Velociraptor binary
13+
completely.
614
weight: 10
715
date: 2024-11-03T00:00:00Z
816
no_edit: true

content/announcements/advisories/CVE-2025-0914/_index.md

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,10 @@
11
---
22
menutitle: "CVE-2025-0914"
33
title: "CVE-2025-0914 Velociraptor Shell Plugin prevent_execve bypass"
4+
summary: |
5+
Velociraptor normally allows agents to run arbitrary commands via
6+
the `execve()` plugin. This option can be blocked by configuring the
7+
`prevent_execve` configuration option.
48
description: |
59
Velociraptor normally allows agents to run arbitrary commands via
610
the `execve()` plugin. This option can be blocked by configuring the

content/announcements/advisories/CVE-2025-14728/_index.md

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,11 +1,14 @@
11
---
22
menutitle: "CVE-2025-14728"
33
title: "CVE-2025-14728 Velociraptor directory traversal vulnerability"
4+
summary: |
5+
Velociraptor normally is only allowed to write in the datastore. However,
6+
under some situations it is possible for a rogue client to write files
7+
outside the datastore.
48
description: |
59
Velociraptor normally is only allowed to write in the datastore. However,
610
under some situations it is possible for a rogue client to write files
711
outside the datastore.
8-
912
weight: 9
1013
date: 2025-12-20T00:00:00Z
1114
no_edit: true

content/announcements/advisories/CVE-2025-6264/_index.md

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,18 @@
11
---
22
menutitle: "CVE-2025-6264"
33
title: "CVE-2025-6264 Velociraptor priviledge escalation via UpdateConfig artifact"
4+
summary: |
5+
Velociraptor normally requires high permissions to launch dangerous artifacts.
6+
The Admin.Client.UpdateClientConfig is an artifact used to update the client's
7+
configuration. This artifact did not enforce an additional required permission
8+
allowing users with COLLECT_CLIENT permissions to collect it from endpoints and
9+
update the configuration (leading to take over).
410
description: |
511
Velociraptor normally requires high permissions to launch dangerous artifacts.
612
The Admin.Client.UpdateClientConfig is an artifact used to update the client's
713
configuration. This artifact did not enforce an additional required permission
814
allowing users with COLLECT_CLIENT permissions to collect it from endpoints and
915
update the configuration (leading to take over).
10-
1116
weight: 10
1217
date: 2025-06-18T00:00:00Z
1318
no_edit: true

content/announcements/advisories/CVE-2026-5329/_index.md

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,10 +1,12 @@
11
---
22
menutitle: "CVE-2026-5329"
33
title: "CVE-2026-5329 Velociraptor improper input validation in client message handler"
4+
summary: |
5+
Velociraptor versions prior to 0.76.2 contain an improper input validation vulnerability in the
6+
client monitoring message handler that may lead to remote code execution on the Velociraptor server.
47
description: |
58
Velociraptor versions prior to 0.76.2 contain an improper input validation vulnerability in the
69
client monitoring message handler that may lead to remote code execution on the Velociraptor server.
7-
810
weight: 9
911
date: 2026-04-07T00:00:00Z
1012
no_edit: true

content/announcements/advisories/CVE-2026-6290/_index.md

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,10 +1,12 @@
11
---
22
menutitle: "CVE-2026-6290"
33
title: "CVE-2026-6290 Velociraptor query() plugin misapplies permissions to orgs"
4+
summary: |
5+
Velociraptor versions prior to 0.76.3 contain a vulnerability in the
6+
query plugin which allows access to all orgs with the user's current ACL token.
47
description: |
58
Velociraptor versions prior to 0.76.3 contain a vulnerability in the
69
query plugin which allows access to all orgs with the user's current ACL token.
7-
810
weight: 9
911
date: 2026-04-15T00:00:00Z
1012
no_edit: true

0 commit comments

Comments
 (0)