Tenable Nessus <= 10.8.4 File Overwrite (TNS-2025-13)

According to its self-reported version, the Tenable Nessus application running on the remote host is prior or equal to 10.8.4. It is, therefore, affected by a file overwrite vulnerability as referenced in the TNS-2025-13 advisory. - In Tenable Nessus versions prior to 10.8.5 on a Windows host, it...

Tenable Nessus Privilege Escalation Vulnerability (TNS-2025-13)

Tenable Nessus is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2025-36630

creationtimestamp| type| source ---|---|--- 2025-07-02 00:15:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/20089...

CVE-2025-36630 Local Privilege Escalation

In Tenable Nessus versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could overwrite arbitrary local system files with log content at SYSTEM privilege...

CVE-2025-36630 Local Privilege Escalation

In Tenable Nessus versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could overwrite arbitrary local system files with log content at SYSTEM privilege...

CVE-2025-36630

CVE-2025-36630 affects Tenable Nessus on Windows, prior to version 10.8.5. A non‑administrative user could overwrite arbitrary local system files with log content, achieving SYSTEM privilege. Root cause details are not explicitly provided in the documents; exploitation status is not detailed. The...

[R1] Nessus Version 10.8.5 Fixes Multiple Vulnerabilities

R1 Nessus Version 10.8.5 Fixes Multiple Vulnerabilities Arnie Cabral Mon, 06/30/2025 - 12:10 Nessus leverages third-party software to help provide underlying functionality. Several of the third-party components libxml2, libxslt were found to contain vulnerabilities, and updated versions have been...

CVE-2023-36630

creationtimestamp| type| source ---|---|--- 2023-06-25 20:35:18+00:00| seen| https://t.me/cibsecurity/65493...

CVE-2023-36630

In CloudPanel before 2.3.1, insecure file upload leads to privilege escalation and authentication bypass...

CVE-2023-36630

CVE-2023-36630 affects CloudPanel prior to version 2.3.1. The issue is insecure file upload that enables privilege escalation and authentication bypass. Documented impact aligns with high severity (C/H/I/A). The Red Hat/CNNVD/NVD entries corroborate the same description. A PoC is noted in the ADP...

CVE-2021-36630

creationtimestamp| type| source ---|---|--- 2023-01-18 16:21:02+00:00| seen| https://t.me/cibsecurity/56664...

CVE-2021-36630

DDOS reflection amplification vulnerability in eAut module of Ruckus Wireless SmartZone controller that allows remote attackers to perform DOS attacks via crafted request...

CVE-2021-36630

DDOS reflection amplification vulnerability in eAut module of Ruckus Wireless SmartZone controller that allows remote attackers to perform DOS attacks via crafted request...

CVE-2021-36630

The CVE-2021-36630 entry describes a DDOS reflection amplification vulnerability in the eAut module of Ruckus Wireless SmartZone controllers, enabling remote attackers to conduct denial-of-service via crafted requests. The affected component is the eAut module within SmartZone; the underlying cau...

CVE-2020-36630

creationtimestamp| type| source ---|---|--- 2022-12-25 22:40:26+00:00| seen| https://t.me/cibsecurity/55322...

CVE-2020-36630

FreePBX cdr 14.0 is affected by a SQL injection in the ajaxHandler function of ucp/Cdr.class.php through manipulation of the limit/offset parameter. The issue is resolved by upgrading to version 14.0.5.21, with the patch identified as f1a9eea2dfff30fb99d825bac194a676a82b9ec8. Connected sources co...

Microsoft Edge Scripting Engine Remote Memory Corruption Vulnerability (CNVD-2017-36630)

Microsoft Edge is a popular browser. A remote memory corruption vulnerability exists in the Microsoft Edge scripting engine, which allows remote attackers to exploit the vulnerability to build malicious WEB pages that can be parsed by the user with elevated privileges...

VMware Player and Workstation <= 6.5.3 'vmware-authd' Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36630/info VMware Player and Workstation are prone to a remote denial-of-service vulnerability because the applications fail to perform adequate validation checks on user-supplied input. An attacker can exploit this issue...