CVE-2022-35632

Name of the Vulnerable Software and Affected Versions Velociraptor versions prior to 0.6.5-2

Description The Velociraptor GUI contains an editor suggestion feature that can display the description field of a VQL function, plugin or artifact. This field was not properly sanitized and can lead to cross-site scripting (XSS).

Recommendations For versions prior to 0.6.5-2, update to Velociraptor 0.6.5-2 to resolve the issue. As a temporary workaround, consider disabling the editor suggestion feature until a patch is available. Restrict access to the description field of VQL functions, plugins, or artifacts to minimize the risk of exploitation.