4.7

CVSS Score

3.1

Basic Information

CVE ID

CVE-2025-6264

GHSA ID

GHSA-gpfc-mph4-qm24

EPSS Score

0.14344%

CWE

CWE-276

Published

6/20/2025

Updated

6/20/2025

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-6264

CVE-2025-6264: Velociraptor vulnerable to privilege escalation via UpdateConfig artifact

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch.

The Admin.Client.UpdateClientConfig is an artifact used to update the client's configuration. This artifact did not enforce an additional required permission, allowing users with COLLECT_CLIENT permissions (normally given by the "Investigator" role) to collect it from endpoints and update the configuration.

This can lead to arbitrary command execution and endpoint takeover.

To successfully exploit this vulnerability the user must already have access to collect artifacts from the endpoint (i.e. have the COLLECT_CLIENT given typically by the "Investigator' role).

(GitHub Advisory)

4.7

CVSS Score

3.1

Basic Information

CVE ID

CVE-2025-6264

GHSA ID

GHSA-gpfc-mph4-qm24

EPSS Score

0.14344%

CWE

CWE-276

Published

6/20/2025

Updated

6/20/2025

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
www.velocidex.com/golang/velociraptor	go	< 0.74.3	0.74.3

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in a missing permission check on the Admin.Client.UpdateClientConfig artifact in Velociraptor. This artifact has powerful capabilities to modify an endpoint's configuration, which can be leveraged for arbitrary code execution. The vulnerability allowed users with the COLLECT_CLIENT permission, typically assigned to the 'Investigator' role, to trigger this artifact without needing higher-level permissions like EXECVE.

The provided patch remediates this by introducing a required_permissions check for EXECVE and FILESYSTEM_WRITE into the artifact's definition file (Admin/Client/UpdateClientConfig.yaml). This ensures that only highly privileged users can execute this sensitive action.

The analysis of the commit shows that while many artifact files were updated to include implied_permissions as part of a broader security hardening, the core of this specific vulnerability was the lack of any permission enforcement on the Admin.Client.UpdateClientConfig artifact. Therefore, any runtime profile during exploitation would show the execution of this artifact, which was previously allowed for lower-privileged users.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

V*lo*ir*ptor *llows *oll**tion o* VQL qu*ri*s p**k**** into *rti***ts *rom *n*points. T**s* *rti***ts **n ** us** to *o *nyt*in* *n* usu*lly run wit* *l*v*t** p*rmissions. To limit ****ss to som* **n**rous *rti***t, V*lo*ir*ptor *llows *or t*os* to

Reasoning

T** vuln*r**ility li*s in * missin* p*rmission ****k on t** `**min.*li*nt.Up**t**li*nt*on*i*` *rti***t in V*lo*ir*ptor. T*is *rti***t **s pow*r*ul **p**iliti*s to mo*i*y *n *n*point's *on*i*ur*tion, w*i** **n ** l*v*r**** *or *r*itr*ry *o** *x**ution

4.7

Basic Information

Concerned about an active attack path?

CVE-2025-6264: Velociraptor vulnerable to privilege escalation via UpdateConfig artifact

4.7

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI