Lucene search
+L

Tenable Nessus Network Monitor < 5.13.0 Multiple Vulnerabilities (TNS-2021-02)

🗓️ 20 Dec 2022 00:00:00Reported by Copyright (C) 2022 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 44 Views

Tenable Nessus Network Monitor v5.13.0 multiple vulnerabilities (TNS-2021-02

Related
Refs
Code
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: Multiple Vulnerabilities in IBM API Connect
15 Mar 202500:18
ibm
IBM Security Bulletins
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to cross-site scripting in jQuery (CVE-2020-11023)
12 Jan 202321:59
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities fixed in IBM Security Verify Governance
11 Jan 202416:41
ibm
IBM Security Bulletins
Security Bulletin: IBM Spectrum Symphony provides upgraded software packages to address known CVEs
31 Jan 202402:01
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities Addressed in IBM Tivoli Network Manager IP Edition (ITNM) version 4.2 Fix Pack 20 (4.2.0.20)
11 Nov 202411:31
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in Apache Ant affect IBM Operations Analytics - Log Analysis (CVE-2020-11023, CVE-2020-23064, CVE-2020-11022)
6 Sep 202408:33
ibm
IBM Security Bulletins
Security Bulletin: IBM CICS TX Advanced is vulnerable to multiple vulnerabilities in jQuery.
14 Feb 202321:04
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities in IBM WebSphere eXtreme Scale Liberty Deployment.
21 Mar 202318:07
ibm
IBM Security Bulletins
Security Bulletin: IBM Cognos Command Center is affected by multiple vulnerabilities
4 May 202320:23
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in jQuery affect watsonx.data
30 Jan 202511:08
ibm
Rows per page
# SPDX-FileCopyrightText: 2022 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:tenable:nessus_network_monitor";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.118436");
  script_version("2025-01-31T15:39:24+0000");
  script_tag(name:"last_modification", value:"2025-01-31 15:39:24 +0000 (Fri, 31 Jan 2025)");
  script_tag(name:"creation_date", value:"2022-12-20 14:06:37 +0000 (Tue, 20 Dec 2022)");
  script_tag(name:"cvss_base", value:"4.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2021-07-20 23:15:00 +0000 (Tue, 20 Jul 2021)");

  script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
  script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
  script_cve_id("CVE-2020-11022", "CVE-2020-11023");

  script_tag(name:"qod_type", value:"registry");

  script_tag(name:"solution_type", value:"VendorFix");

  script_name("Tenable Nessus Network Monitor < 5.13.0 Multiple Vulnerabilities (TNS-2021-02)");

  script_category(ACT_GATHER_INFO);

  script_copyright("Copyright (C) 2022 Greenbone AG");
  script_family("General");
  script_dependencies("gb_tenable_nnm_smb_login_detect.nasl");
  script_mandatory_keys("tenable/nessus_network_monitor/detected");

  script_tag(name:"summary", value:"Tenable Nessus Network Monitor is prone to multiple vulnerabilities.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"One of the third-party components (jQuery) was found to
  contain vulnerabilities, and updated versions have been made available by the providers.

  Nessus Network Monitor 5.13.0 updates jQuery to version 3.5.1 to address the identified
  vulnerabilities.");

  script_tag(name:"affected", value:"Tenable Nessus Network Monitor prior to version 5.13.0.");

  script_tag(name:"solution", value:"Update to version 5.13.0 or later.");

  script_xref(name:"URL", value:"https://www.tenable.com/security/tns-2021-02");

  exit(0);
}

include("version_func.inc");
include("host_details.inc");

if( ! infos = get_app_version_and_location( cpe:CPE, exit_no_version:TRUE ) )
  exit( 0 );

version = infos["version"];
location = infos["location"];

if( version_is_less( version:version, test_version:"5.13.0" ) ) {
  report = report_fixed_ver( installed_version:version, fixed_version:"5.13.0", install_path:location );
  security_message( port:0, data:report );
  exit( 0 );
}

exit( 99 );

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

31 Jan 2025 00:00Current
7.5High risk
Vulners AI Score7.5
CVSS 24.3
CVSS 3.16.1 - 6.9
EPSS0.99019
SSVC
44