3 matches found
Tenable Nessus Agent 7.2.0 - 8.2.2 Multiple Vulnerabilities (TNS-2021-04)
Tenable Nessus Agent is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:tenable:nessusagent";...
CVE-2021-20077
Nessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role security token on the local host during initial linking of the Nessus Agent when installed on an Amazon EC2 instance. This could allow a privileged attacker to obtain the token...
CVE-2021-20077
CVE-2021-20077 affects Tenable Nessus Agent versions 7.2.0–8.2.2 installed on Amazon EC2. During initial linking, the agent could inadvertently capture the IAM role security token on the local host, enabling a privileged attacker to obtain the token. The commonly cited remediation is upgrading to...