CVE-2026-1814
Unknown Unknown - Not Provided
Insufficient Entropy Weakness in Rapid7 Nexpose Keystore Passwords

Publication date: 2026-02-03

Last updated on: 2026-02-09

Assigner: Rapid7, Inc.

Description
Rapid7 Nexpose versions 6.4.50 and later are vulnerable to an insufficient entropy issue in the CredentialsKeyStorePassword.generateRandomPassword() method. When updating legacy keystore passwords, the application generates a new password with insufficient length (7-12 characters) and a static prefix 'p', resulting in a weak keyspace. An attacker with access to the nsc.ks file can brute-force this password using consumer-grade hardware to decrypt stored credentials.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-03
Last Modified
2026-02-09
Generated
2026-06-16
AI Q&A
2026-02-04
EPSS Evaluated
2026-06-15
NVD
CVE-2026-1814
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
rapid7 nexpose From 6.4.50 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-331 The product uses an algorithm or scheme that produces insufficient entropy, leaving patterns or clusters of values that are more likely to occur than others.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability affects Rapid7 Nexpose versions 6.4.50 and later. It involves an insufficient entropy issue in the CredentialsKeyStorePassword.generateRandomPassword() method. Specifically, when the application updates legacy keystore passwords, it generates a new password that is too short (7-12 characters) and always starts with a static prefix 'p'. This results in a weak keyspace, making the password easier to guess.

An attacker who gains access to the nsc.ks file can use consumer-grade hardware to brute-force the weak password and decrypt stored credentials.

Impact Analysis

The vulnerability can lead to unauthorized access to sensitive credentials stored within the Nexpose application. If an attacker obtains the nsc.ks file, they can brute-force the weakly generated password to decrypt these credentials.

This could result in compromised systems or data, as attackers may use the decrypted credentials to escalate privileges, move laterally within a network, or access protected resources.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-1814. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart