Tenable Nessus < 10.5.5 Multiple Vulnerabilities (TNS-2023-31)

According to its self-reported version, the Tenable Nessus application running on the remote host is prior to 10.5.5. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2023-31 advisory. - A pass-back vulnerability exists where an authenticated, remote attacker with...

[R2] Nessus Version 10.5.5 Fixes Multiple Vulnerabilities

R2 Nessus Version 10.5.5 Fixes Multiple Vulnerabilities Arnie Cabral Thu, 09/21/2023 - 10:55 A pass-back vulnerability exists where an authenticated, remote attacker with administrator privileges could uncover stored SMTP credentials within the Nessus application. - CVE-2023-3251 An arbitrary fil...

Tenable Nessus Multiple Vulnerabilities (TNS-2023-29, TNS-2023-31)

Tenable Nessus is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:tenable:nessus"; ifdescripti...

CVE-2023-3252

creationtimestamp| type| source ---|---|--- 2023-08-29 22:17:41+00:00| seen| https://t.me/cibsecurity/69380...

CVE-2023-3252

CVE-2023-3252 affects Tenable Nessus prior to 10.5.5, where an authenticated, remote attacker with administrator privileges could modify logging variables to write arbitrary files on the remote host, causing a denial of service. The vulnerability is addressed in Nessus 10.5.5 (per TNS-2023-31). R...