All errata/sisyphus/ALT-PU-2015-2892-1
ALT-PU-2015-2892-1

Package update sed in branch sisyphus

Version4.2.2.0.93.31c8-alt1
Published2015-10-09
Max severityHIGH
Severity:

Closed issues (3)

CVE-2026-9153
MEDIUM6.5

Arbitrary File Read vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to read arbitrary files via the expression parameter due to insufficient input validation.

Published: 2026-06-24Modified: 2026-06-27
CVSS 3.xMEDIUM 6.5
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVE-2026-9154
MEDIUM6.5

Arbitrary File Write vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to write attacker-controlled content to arbitrary file paths via the expression parameter.

Published: 2026-06-24Modified: 2026-06-27
CVSS 3.xMEDIUM 6.5
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVE-2026-9155
HIGH8.8

OS Command Injection vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the expression parameter due to insufficient input validation.

Published: 2026-06-24Modified: 2026-06-27
CVSS 3.xHIGH 8.8
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H