CVE-2025-6264 | Rapid7 Velociraptor up to 0.74.2 VQL Query Admin.Client.UpdateClientConfig default permission

A vulnerability classified as problematic has been found in Rapid7 Velociraptor up to 0.74.2. Affected is the function Admin.Client.UpdateClientConfig of the component VQL Query Handler. The manipulation leads to incorrect default permissions.

This vulnerability is traded as CVE-2025-6264. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More