Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.TENABLE_NESSUS_AGENT_TNS-2023-38.NASLHistoryNov 01, 2023 - 12:00 a.m.
Tenable Nessus Agent 10.4.2 Multiple Vulnerabilities (TNS-2023-38)
2023-11-0100:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
27
tenable nessus agent
multiple vulnerabilities
tns-2023-38
openssl
zlib
cve-2023-5847
windows
linux
privilege escalation
tenable downloads portal
scanner
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.6%
According to its self-reported version, the Tenable Nessus Agent running on the remote host is 10.4.2. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2023-38 advisory.
- Nessus Agent leverages third-party software to help provide underlying functionality. Several of the third-party components (OpenSSL, zlib) were found to contain vulnerabilities, and updated versions have been made available by the providers.Out of caution and in line with best practice, Tenable has opted to upgrade these components to address the potential impact of the issues. Nessus Agent 10.4.3 updates OpenSSL to version 3.0.12 and zlib fixes have been applied to address the identified vulnerabilities.Additionally, one other vulnerability was discovered, reported and fixed:Under certain conditions, a low privileged attacker could load a specially crafted file during installation or upgrade to escalate privileges on Windows and Linux hosts. - CVE-2023-5847 Tenable has released Nessus Agent 10.4.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal (https://www.tenable.com/downloads/nessus-agents). (CVE-2023-3446, CVE-2023-3817, CVE-2023-45853, CVE-2023-4807, CVE-2023-5847)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(184128);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/12/06");
script_cve_id(
"CVE-2023-3446",
"CVE-2023-3817",
"CVE-2023-4807",
"CVE-2023-5847",
"CVE-2023-45853"
);
script_xref(name:"IAVA", value:"2023-A-0606-S");
script_name(english:"Tenable Nessus Agent 10.4.2 Multiple Vulnerabilities (TNS-2023-38)");
script_set_attribute(attribute:"synopsis", value:
"An instance of Nessus Agent installed on the remote system is affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"According to its self-reported version, the Tenable Nessus Agent running on the remote host is 10.4.2. It is,
therefore, affected by multiple vulnerabilities as referenced in the TNS-2023-38 advisory.
- Nessus Agent leverages third-party software to help provide underlying functionality. Several of the
third-party components (OpenSSL, zlib) were found to contain vulnerabilities, and updated versions have
been made available by the providers.Out of caution and in line with best practice, Tenable has opted to
upgrade these components to address the potential impact of the issues. Nessus Agent 10.4.3 updates
OpenSSL to version 3.0.12 and zlib fixes have been applied to address the identified
vulnerabilities.Additionally, one other vulnerability was discovered, reported and fixed:Under certain
conditions, a low privileged attacker could load a specially crafted file during installation or upgrade
to escalate privileges on Windows and Linux hosts. - CVE-2023-5847 Tenable has released Nessus Agent
10.4.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal
(https://www.tenable.com/downloads/nessus-agents). (CVE-2023-3446, CVE-2023-3817, CVE-2023-45853,
CVE-2023-4807, CVE-2023-5847)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://www.tenable.com/security/TNS-2023-38");
script_set_attribute(attribute:"solution", value:
"Upgrade to Tenable Nessus Agent 10.4.3 or later.");
script_set_attribute(attribute:"agent", value:"all");
script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"manual");
script_set_attribute(attribute:"cvss_score_rationale", value:"Score based on analysis of the vendor advisory.");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/07/13");
script_set_attribute(attribute:"patch_publication_date", value:"2023/10/31");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/11/01");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:tenable:nessus_agent");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("tenable_nessus_agent_installed_win.nbin", "nessus_agent_installed_macos.nbin", "nessus_agent_installed_linux.nbin");
script_require_keys("installed_sw/Tenable Nessus Agent");
exit(0);
}
include('vcf.inc');
var app_info = vcf::get_app_info(app:'Tenable Nessus Agent');
var constraints = [
{ 'equal' : '10.4.2', 'fixed_display' : '10.4.3' }
];
vcf::check_version_and_report(
app_info:app_info,
constraints:constraints,
severity:SECURITY_HOLE
);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| tenable | nessus_agent | cpe:/a:tenable:nessus_agent |
References
Related
openvas
openvas
Tenable Nessus Agent 10.4.2 Multiple Vulnerabilities (TNS-2023-38)
2023-11-02 00:00:00
Tenable Nessus Multiple Vulnerabilities (TNS-2023-36)
2023-11-23 00:00:00
Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-3021)
2023-10-31 00:00:00
nessus
nessus
Tenable Nessus < 10.6.2 Multiple Vulnerabilities (TNS-2023-37)
2023-11-01 00:00:00
Tenable Nessus < 10.5.6 Multiple Vulnerabilities (TNS-2023-36)
2023-11-01 00:00:00
Ubuntu 20.04 LTS : OpenSSL vulnerabilities (USN-6435-2)
2023-10-25 00:00:00
ibm
ibm
Security Bulletin: IBM Workload Automation is potentially affected by a vulnerability in OpenSSL that might cause Denial of Service
2024-06-07 11:06:19
osv
osv
openssl vulnerabilities
2023-10-25 12:40:20
openssl vulnerabilities
2023-10-18 19:51:24
CVE-2023-3817
2023-07-31 16:15:10
cvelist
cvelist
CVE-2023-3817 Excessive time spent checking DH q parameter value
2023-07-31 15:34:13
slackware
slackware
[slackware-security] openssl
2023-08-02 17:08:29
amazon
amazon
Medium: edk2
2023-08-17 11:58:00
Medium: openssl11
2023-08-31 22:28:00
Medium: openssl
2023-09-27 22:15:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2023-10-18 00:00:00
OpenSSL vulnerabilities
2023-10-25 00:00:00
OpenSSL vulnerabilities
2023-10-24 00:00:00
debiancve
debiancve
CVE-2023-3817
2023-07-31 16:15:10
CVE-2023-45853
2023-10-14 02:15:09
broadcom
broadcom
Excessive time spent checking DH q parameter value (CVE-2023-3817)
2024-04-16 00:00:00
nvd
nvd
CVE-2023-3817
2023-07-31 16:15:10
CVE-2023-45853
2023-10-14 02:15:09
f5
f5
K000137969 : OpenSSL vulnerability CVE-2023-3817
2023-12-19 00:00:00
redos
redos
ROS-20230907-04
2023-09-07 00:00:00
debian
debian
[SECURITY] [DLA 3530-1] openssl security update
2023-08-16 05:56:34
alpinelinux
alpinelinux
CVE-2023-3817
2023-07-31 16:15:10
CVE-2023-45853
2023-10-14 02:15:09
cve
cve
CVE-2023-3817
2023-07-31 16:15:10
CVE-2023-45853
2023-10-14 02:15:09
ubuntucve
ubuntucve
CVE-2023-3817
2023-07-31 00:00:00
prion
prion
Design/Logic Flaw
2023-07-31 16:15:00
redhat
redhat
(RHSA-2024:0154) Low: openssl security update
2024-01-10 16:25:10
(RHSA-2024:0208) Low: openssl security update
2024-01-11 21:04:17
(RHSA-2023:7877) Low: openssl security update
2023-12-18 07:10:45
oraclelinux
oraclelinux
openssl security update
2023-12-18 00:00:00
openssl security update
2024-01-10 00:00:00
almalinux
almalinux
Low: openssl security update
2023-12-19 00:00:00
mageia
mageia
Updated openssl packages fix security vulnerability
2023-09-11 16:07:54
Updated quictls packages fix security vulnerabilities
2023-09-30 22:15:40
cloudfoundry
cloudfoundry
USN-6450-1: OpenSSL vulnerabilities | Cloud Foundry
2023-11-09 00:00:00
redhatcve
redhatcve
CVE-2023-45853
2023-10-16 23:57:36
cloudlinux
cloudlinux
zlib: Fix of CVE-2023-45853
2023-10-24 20:53:31
cbl_mariner
cbl_mariner
CVE-2023-45853 affecting package zlib for versions less than 1.2.13-2
2023-10-25 19:58:19
CVE-2023-45853 affecting package tcl for versions less than 8.6.13-3
2023-10-31 17:32:47
wolfi
wolfi
CVE-2023-45853 vulnerabilities
2024-07-03 21:08:38
gentoo
gentoo
zlib: Buffer Overflow
2024-01-15 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.6%
Related for TENABLE_NESSUS_AGENT_TNS-2023-38.NASL