CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-8660

OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows remote attackers to execute arbitrary OS commands via the host parameter due to insufficient input validation when constructing shell commands.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 42.1%

CVSS Severity

CVSS v3 Score 7.7

References

https://extensions.rapid7.com/extension/ping

Products affected by CVE-2026-8660

Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-8660

Products

Pricing

Contact Us