PT-2026-52183 · Rapid7 · Insightconnect Awk Plugin
Published
2026-06-25
·
Updated
2026-06-25
·
CVE-2026-8592
CVSS v3.1
7.7
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L |
OS Command Injection vulnerability in the process string action of Rapid7 InsightConnect AWK Plugin on Linux allows remote attackers to execute arbitrary OS commands via the text or expression parameters due to unsafe shell command construction in the processing pipeline.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Insightconnect Awk Plugin