4 matches found
CVE-2024-3289
CVE-2024-3289 affects Nessus on Windows where installing to a non-default directory did not enforce secure permissions for sub-directories in versions prior to 10.7.3, enabling local privilege escalation for users who did not secure installation folders. The issue is local (attack vector: LOCAL) ...
CVE-2024-3289
When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation...
Tenable Nessus < 10.7.3 Multiple Vulnerabilities (TNS-2024-08)
According to its self-reported version, the Tenable Nessus application running on the remote host is prior to 10.7.3. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-08 advisory. - Two separate vulnerabilities were discovered, reported and fixed:When installin...
[R1] Nessus Version 10.7.3 Fixes Multiple Vulnerabilities
R1 Nessus Version 10.7.3 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 05/15/2024 - 11:01 Two separate vulnerabilities were discovered, reported and fixed: When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce...