Lucene search
TenableCVELIST:CVE-2024-3290HistoryMay 17, 2024 - 4:54 p.m.
CVE-2024-3290 Race Condition
2024-05-1716:54:55
CWE-367
tenable
www.cve.org
1
race condition
vulnerability
local attacker
installation parameters
arbitrary code
windows nessus host
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host
CNA Affected
[
{
"defaultStatus": "affected",
"platforms": [
"Windows"
],
"product": "Nessus",
"vendor": "Tenable",
"versions": [
{
"lessThan": "10.7.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]References
Related
nvd
nvd
CVE-2024-3290
2024-05-17 17:15:07
cve
cve
CVE-2024-3290
2024-05-17 17:15:07
vulnrichment
vulnrichment
CVE-2024-3290 Race Condition
2024-05-17 16:54:55
tenable
tenable
[R1] Nessus Version 10.7.3 Fixes Multiple Vulnerabilities
2024-05-15 15:01:06
openvas
openvas
Tenable Nessus Multiple Vulnerabilities (TNS-2024-08)
2024-05-21 00:00:00
nessus
nessus
Tenable Nessus < 10.7.3 Multiple Vulnerabilities (TNS-2024-08)
2024-05-17 00:00:00
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2024-3290