CVE-2026-1568 - Vulnerability Details - OpenCVE

Rapid7 InsightVM versions before 8.34.0 contain a signature verification issue on the Assertion Consumer Service (ACS) cloud endpoint that could allow an attacker to gain unauthorized access to InsightVM accounts setup via "Security Console" installations, resulting in full account takeover. The issue occurs due to the application processing these unsigned assertions and issuing session cookies that granted access to the targeted user accounts. This has been fixed in version 8.34.0 of InsightVM.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rapid7	Insightvm

No data.

No data.

References

Link	Providers
https://docs.rapid7.com/insight/command-platform-release-notes/

History

Wed, 04 Feb 2026 12:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Rapid7 Rapid7 insightvm
Vendors & Products		Rapid7 Rapid7 insightvm

Tue, 03 Feb 2026 17:00:00 +0000

Type	Values Removed	Values Added
Description		Rapid7 InsightVM versions before 8.34.0 contain a signature verification issue on the Assertion Consumer Service (ACS) cloud endpoint that could allow an attacker to gain unauthorized access to InsightVM accounts setup via "Security Console" installations, resulting in full account takeover. The issue occurs due to the application processing these unsigned assertions and issuing session cookies that granted access to the targeted user accounts. This has been fixed in version 8.34.0 of InsightVM.
Title		Rapid7 InsightVM Signature Validation Vulnerability
Weaknesses		CWE-287 CWE-347
References		https://docs.rapid7.com/insight/command-platform-release-notes/
Metrics		cvssV3_1 `{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N'}`

MITRE

Status: PUBLISHED

Assigner: rapid7

Published: 2026-02-03T16:47:03.614Z

Updated: 2026-02-04T04:55:56.971Z

Reserved: 2026-01-28T20:21:17.363Z

Link: CVE-2026-1568

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-02-03T17:15:59.893

Modified: 2026-02-04T16:34:21.763

Link: CVE-2026-1568

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-1568", "assignerOrgId": "9974b330-7714-4307-a722-5648477acda7", "state": "PUBLISHED", "assignerShortName": "rapid7", "dateReserved": "2026-01-28T20:21:17.363Z", "datePublished": "2026-02-03T16:47:03.614Z", "dateUpdated": "2026-02-04T04:55:56.971Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Vulnerability Management", "vendor": "Rapid7", "versions": [{"lessThan": "8.34.0", "status": "affected", "version": "0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Cory Rey, Schellman"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Rapid7 InsightVM versions before <span style=\"background-color: rgba(232, 232, 232, 0.04);\">8.34.0 contain a signature verification issue on the Assertion Consumer Service (ACS) cloud endpoint that could allow an attacker to gain unauthorized access to InsightVM accounts setup<br>via \"Security Console\" installations, resulting in full account takeover. The issue occurs due to the application processing these unsigned assertions and issuing session cookies that granted access to the<br>targeted user accounts. This has been fixed in version 8.34.0 of InsightVM.</span><br>"}], "value": "Rapid7 InsightVM versions before\u00a08.34.0 contain a signature verification issue on the\u00a0Assertion Consumer Service (ACS) cloud endpoint that could allow an attacker to gain unauthorized access to InsightVM accounts setup\nvia \"Security Console\" installations, resulting in full account takeover. The issue occurs due to the application processing these unsigned assertions and issuing session cookies that granted access to the\ntargeted user accounts. This has been fixed in version 8.34.0 of InsightVM."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-347", "description": "CWE-347 Improper Verification of Cryptographic Signature", "lang": "en", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-287", "description": "CWE-287 Improper Authentication", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "9974b330-7714-4307-a722-5648477acda7", "shortName": "rapid7", "dateUpdated": "2026-02-03T16:47:03.614Z"}, "references": [{"url": "https://docs.rapid7.com/insight/command-platform-release-notes/"}], "source": {"discovery": "EXTERNAL"}, "title": "Rapid7 InsightVM Signature Validation Vulnerability", "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-03T00:00:00+00:00", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2026-1568"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-04T04:55:56.971Z"}}]}}