Please update to the latest release 0.76.5 to address the following CVEs:
-
CVE-2026-5329 Velociraptor improper input validation in client message handler. This could lead to remote code execution on the server.
-
CVE-2026-6290 Velociraptor query() plugin misapplies permissions to orgs.
-
CVE-2026-6863 HTTP Filestore Endpoints Misapply Permissions Across Organizations
-
CVE-2026-6948 Unbounded Memory Allocation in VQLResponse Result-Set Writer. This could lead to a DoS attack against the server.
Velociraptor - Digging Deeper!
Velociraptor is an advanced digital forensic and incident response tool that enhances your visibility into your endpoints.
At the press of a (few) buttons, perform targeted collection of digital forensic evidence simultaneously across your endpoints, with speed and precision.
Continuously collect endpoint events such as event logs, file modifications and process execution. Centrally store events indefinitely for historical review and analysis.
Don't wait until an event occurs. Actively search for suspicious activities using our library of forensic artifacts, then customize to your specific threat hunting needs.