220 matches found
[R1] Tenable.sc 5.20.0 Fixes Multiple Vulnerabilities
R1 Tenable.sc 5.20.0 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 01/05/2022 - 10:46 Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerability which could allow a remote, unauthenticated attacker to execute code under special circumstances. An...
[R1] Nessus 10.0.0 Fixes One Vulnerability
Nessus versions 8.15.2 and earlier were found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus host...
[R1] Nessus 8.2.2 Fixes One Vulnerability
Nessus versions 8.2.1 and earlier were found to contain a stored XSS vulnerability due to improper validation of user-supplied input. An authenticated, remote attacker could potentially exploit this vulnerability via a specially crafted request to execute arbitrary script code in a user's browser...
[R1] Nessus Agent Version 10.7.4 Fixes One Vulnerability
R1 Nessus Agent Version 10.7.4 Fixes One Vulnerability Arnie Cabral Wed, 04/02/2025 - 11:12 When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions prior to 10.7.4 did not enforce secure permissions for sub-directories. This could allow for local privilege...
[R1] Nessus Network Monitor 6.1.0 Fixes Multiple Third-party Vulnerabilities
R1 Nessus Network Monitor 6.1.0 Fixes Multiple Third-party Vulnerabilities Arnie Cabral Tue, 09/20/2022 - 13:14 Nessus Network Monitor leverages third-party software to help provide underlying functionality. Several third-party components OpenSSL and moment.js were found to contain vulnerabilitie...
[R1] Nessus 8.13.1 Fixes Multiple Vulnerabilities
Nessus leverages third-party software to help provide underlying functionality. One third-party component OpenSSL was found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable opted to upgrade the bundl...
[R1] SecurityCenter 5.7.1 Fixes Multiple Third-Party Vulnerabilities
SecurityCenter leverages third-party software to help provide underlying functionality. Two separate third-party components PHP and OpenSSL were found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable...
[R2] Tenable Network Monitor 6.5.4 Fixes Multiple Vulnerabilities
R2 Tenable Network Monitor 6.5.4 Fixes Multiple Vulnerabilities Jason Schavel Thu, 05/14/2026 - 13:00 Tenable Network Monitor leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL, curl, sqlite3, handlebars, expat, and dpdk were fou...
[R1] Stand-alone Security Patch Available for Tenable Security Center versions 6.3.0, 6.4.0, 6.4.5 and 6.5.1: SC-202504.2
R1 Stand-alone Security Patch Available for Tenable Security Center versions 6.3.0, 6.4.0, 6.4.5 and 6.5.1: SC-202504.2 Arnie Cabral Wed, 04/16/2025 - 11:36 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL,...
[R1] Nessus Agent Version 10.7.3 Fixes Multiple Vulnerabilities
R1 Nessus Agent Version 10.7.3 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 09/11/2024 - 12:29 Nessus Agent leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL, expat were found to contain vulnerabilities, and updated versions...
[R1] Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202407.1
R1 Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202407.1 Arnie Cabral Tue, 07/09/2024 - 08:33 Security Center leverages third-party software to help provide underlying functionality. One of the third-party components PHP was found to contain...
[R1] Tenable Identity Exposure Version 3.59.5 Fixes Multiple Vulnerabilities
R1 Tenable Identity Exposure Version 3.59.5 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 07/02/2024 - 13:24 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL, curl, envoy, nodeJS were found to conta...
[R1] Tenable Identity Exposure Version 3.42.17 Fixes Multiple Vulnerabilities
R1 Tenable Identity Exposure Version 3.42.17 Fixes Multiple Vulnerabilities Jason Schavel Mon, 10/23/2023 - 11:51 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. Several of the third-party components RabbitMQ, libcurl, and nodeJS were found to...
[R1] Nessus Network Monitor Version 6.1.1 Fixes Multiple Vulnerabilities
R1 Nessus Network Monitor Version 6.1.1 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 11/08/2022 - 12:18 Nessus Network Monitor leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and updated...
[R1] Stand-alone Security Patch Available for Tenable.sc versions 5.19.0 to 5.21.0: Patch 202206.1
R1 Stand-alone Security Patch Available for Tenable.sc versions 5.19.0 to 5.21.0: Patch 202206.1 Arnie Cabral Thu, 06/30/2022 - 11:05 Tenable.sc leverages third-party software to help provide underlying functionality. One of the third-party components Apache was found to contain vulnerabilities,...
[R1] Nessus 10.1.0 Fixes One Third-Party Vulnerability
R1 Nessus 10.1.0 Fixes One Third-Party Vulnerability Jason Schavel Mon, 01/31/2022 - 10:14 Nessus leverages third-party software to help provide underlying functionality. One of the third-party components Underscore.js was found to contain a vulnerability, and an updated version has been made...
[R1] Nessus 8.13.2 Fixes Multiple Third-party Vulnerabilities
Nessus leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable opted to upgrade t...
[R1] Nessus Network Monitor 5.13.0 Fixes One Third-party Vulnerability
Nessus Network Monitor leverages third-party software to help provide underlying functionality. One of the third-party components jQuery was found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable opt...
[R1] Nessus Agent Versions 11.0.3 and 10.9.3 Fix One Vulnerability
R1 Nessus Agent Versions 11.0.3 and 10.9.3 Fix One Vulnerability Arnie Cabral Wed, 01/07/2026 - 08:47 A vulnerability has been identified in the installation/uninstallation of the Nessus Agent Tray App on Windows Hosts which could lead to escalation of privileges...
[R1] Nessus Version 10.7.6 Fixes Multiple Vulnerabilities
R1 Nessus Version 10.7.6 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 09/11/2024 - 12:57 Nessus leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL, expat were found to contain vulnerabilities, and updated versions have been...
[R1] Stand-alone Security Patch Available for Tenable Security Center versions 5.23.1, 6.0.0, 6.1.0, 6.1.1, and 6.2.0: SC-202312.1
R1 Stand-alone Security Patch Available for Tenable Security Center versions 5.23.1, 6.0.0, 6.1.0, 6.1.1, and 6.2.0: SC-202312.1 Arnie Cabral Thu, 12/14/2023 - 10:41 Security Center leverages third-party software to help provide underlying functionality. One of the third-party components Apache w...
[R1] Tenable Plugin Feed ID #202306261202 Fixes Privilege Escalation Vulnerability
R1 Tenable Plugin Feed ID 202306261202 Fixes Privilege Escalation Vulnerability Arnie Cabral Mon, 06/26/2023 - 11:38 As a part of Tenable’s vulnerability disclosure program, a vulnerability in a Nessus plugin was identified and reported. This vulnerability could allow a malicious actor with...
[R1] Tenable.sc 5.18.0 Fixes One Third-party Vulnerability
Tenable.sc leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable opted to upgra...
[R1] Stand-alone Security Patches Available for Tenable Security Center versions 6.4.0, 6.4.5 and 6.5.1: SC-202505.1 + SC-202506.1
R1 Stand-alone Security Patches Available for Tenable Security Center versions 6.4.0, 6.4.5 and 6.5.1: SC-202505.1 + SC-202506.1 Arnie Cabral Mon, 06/30/2025 - 11:41 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components...
[R1] Nessus Version 10.5.7 Fixes One Vulnerability
R1 Nessus Version 10.5.7 Fixes One Vulnerability Arnie Cabral Thu, 11/16/2023 - 10:12 An arbitrary file write vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could alter Nessus Rules variables to overwrite arbitrary files on the...
[R1] Sensor Proxy Version 1.0.7 Fixes Multiple Vulnerabilities
R1 Sensor Proxy Version 1.0.7 Fixes Multiple Vulnerabilities Arnie Cabral Thu, 03/16/2023 - 11:55 Sensor Proxy leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and updated versions have been ma...
[R1] Stand-alone Security Patch Available for Tenable.sc versions 5.22.0 to 6.0.0: SC-202302.2
R1 Stand-alone Security Patch Available for Tenable.sc versions 5.22.0 to 6.0.0: SC-202302.2 Arnie Cabral Tue, 02/21/2023 - 11:42 Tenable.sc leverages third-party software to help provide underlying functionality. One of the third-party components in use Apache was found to contain vulnerabilitie...
[R1] Nessus Agent 8.2.2 Fixes Multiple Vulnerabilities
Nessus Agent leverages third-party software to help provide underlying functionality. One third-party component OpenSSL was found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable opted to upgrade the...
[R1] Nessus Versions 10.11.4 and 10.12.0 Fixes Arbitrary File Deletion
R1 Nessus Versions 10.11.4 and 10.12.0 Fixes Arbitrary File Deletion Jason Schavel Thu, 04/23/2026 - 14:30 A vulnerability has been identified in Nessus on Windows where an attacker to create a junction, enabling the deletion of arbitrary files with SYSTEM privileges. As a result, this condition...
[R2] Security Center Version 6.8.0 Fixes Multiple Vulnerabilities
R2 Security Center Version 6.8.0 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 02/18/2026 - 08:32 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components libssh, postgresql were found to contain vulnerabilities, and updated...
[R1] Security Center Version 6.7.0 Fixes One Vulnerability
R1 Security Center Version 6.7.0 Fixes One Vulnerability Arnie Cabral Wed, 10/08/2025 - 10:29 In Tenable Security Center versions prior to 6.7.0, an improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope...
[R1] Tenable Identity Exposure Version 3.77.12 Fixes Multiple Vulnerabilities
R1 Tenable Identity Exposure Version 3.77.12 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 07/23/2025 - 16:31 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. Several of the third-party components Erlang OTP, Curl, nodeJS and .NET were found to...
[R1] Nessus Version 10.8.5 Fixes Multiple Vulnerabilities
R1 Nessus Version 10.8.5 Fixes Multiple Vulnerabilities Arnie Cabral Mon, 06/30/2025 - 12:10 Nessus leverages third-party software to help provide underlying functionality. Several of the third-party components libxml2, libxslt were found to contain vulnerabilities, and updated versions have been...
[R2] Sensor Proxy Version 1.2.0 Fixes Multiple Vulnerabilities
R2 Sensor Proxy Version 1.2.0 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 04/30/2025 - 12:50 Sensor Proxy leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL, Go were found to contain vulnerabilities, and updated versions hav...
[R1] Nessus Version 10.8.4 Fixes Multiple Vulnerabilities
R1 Nessus Version 10.8.4 Fixes Multiple Vulnerabilities Arnie Cabral Thu, 04/17/2025 - 11:58 Nessus leverages third-party software to help provide underlying functionality. Several of the third-party components libxml2, expat were found to contain vulnerabilities, and updated versions have been...
[R1] Stand-alone Security Patch Available for Tenable.sc versions 5.19.0 to 5.20.1: Patch 202204.1
R1 Stand-alone Security Patch Available for Tenable.sc versions 5.19.0 to 5.20.1: Patch 202204.1 Arnie Cabral Wed, 04/06/2022 - 11:28 Tenable.sc leverages third-party software to help provide underlying functionality. Two of the third-party components Apache and OpenSSL were found to contain...
[R1] Sensor Proxy Version 1.4.0 Fixes Multiple Vulnerabilities
R1 Sensor Proxy Version 1.4.0 Fixes Multiple Vulnerabilities Jason Schavel Thu, 05/21/2026 - 16:00 Sensor Proxy leverages third-party software to help provide underlying functionality. Several of the third-party components openresty, openresty - nginx were found to contain vulnerabilities, and...
[R1] Nessus Agent Version 11.1.3 Fixes Arbitrary File Deletion
R1 Nessus Agent Version 11.1.3 Fixes Arbitrary File Deletion Jason Schavel Thu, 04/23/2026 - 14:10 A vulnerability has been identified in Nessus Agent on Windows where an attacker to create a junction, enabling the deletion of arbitrary files with SYSTEM privileges. As a result, this condition...
[R1] Nessus Manager Versions 10.10.3 and 10.11.3 Fix One Vulnerability
R1 Nessus Manager Versions 10.10.3 and 10.11.3 Fix One Vulnerability Arnie Cabral Tue, 03/03/2026 - 12:08 A path traversal vulnerability exists in Nessus Manager where an authenticated, remote attacker could read arbitrary OS system files...
[R2] Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2
R2 Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2 Arnie Cabral Tue, 02/17/2026 - 08:32 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components...
[R1] Tenable Identity Exposure Version 3.77.16 Fixes Multiple Vulnerabilities
R1 Tenable Identity Exposure Version 3.77.16 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 02/03/2026 - 09:56 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and...
[R1] Stand-alone Security Patches Available for Tenable Security Center versions 6.4.x, 6.5.1 and 6.6.0: SC-202508.1
R1 Stand-alone Security Patches Available for Tenable Security Center versions 6.4.x, 6.5.1 and 6.6.0: SC-202508.1 Arnie Cabral Thu, 08/28/2025 - 11:18 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components Apache, PHP, sqlit...
[R1] Tenable Patch Management Fixes One Vulnerability
R1 Tenable Patch Management Fixes One Vulnerability Arnie Cabral Tue, 07/29/2025 - 09:34 A SQL injection vulnerability exists in Tenable Patch Management versions prior to 9.3.968.19 due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this to inject ...
[R1] Tenable Network Monitor Version 6.5.1 Fixes Multiple Vulnerabilities
R1 Tenable Network Monitor Version 6.5.1 Fixes Multiple Vulnerabilities Arnie Cabral Thu, 05/22/2025 - 07:41 Tenable Network Monitor leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL, expat, curl, libpcap, libxml2 were found to...
[R1] Sensor Proxy Version 1.0.11 Fixes Multiple Vulnerabilities
R1 Sensor Proxy Version 1.0.11 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 10/30/2024 - 13:41 Sensor Proxy leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and updated versions have been...
[R1] Nessus Network Monitor 6.0.0 Fixes Multiple Third-party Vulnerabilities
R1 Nessus Network Monitor 6.0.0 Fixes Multiple Third-party Vulnerabilities Arnie Cabral Wed, 01/05/2022 - 18:19 Nessus Network Monitor leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and updat...
[R1] Nessus Agent Versions 11.0.4 and 11.1.2 Fix One Vulnerability
R1 Nessus Agent Versions 11.0.4 and 11.1.2 Fix One Vulnerability Arnie Cabral Thu, 02/12/2026 - 10:40 A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potentially permitting Denial of Service DoS attack...
[R1] Tenable Network Monitor Version 6.5.3 Fixes Multiple Vulnerabilities
R1 Tenable Network Monitor Version 6.5.3 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 01/27/2026 - 14:02 Nessus Network Monitor leverages third-party software to help provide underlying functionality. Several of the third-party components libxml2, libxslt, expat, c-ares, curl, sqlite were fou...
[R1] Tenable Identity Exposure Version 3.77.14 Fixes Multiple Vulnerabilities
R1 Tenable Identity Exposure Version 3.77.14 Fixes Multiple Vulnerabilities Arnie Cabral Mon, 11/03/2025 - 09:50 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. Several of the third-party components .NET, SQL and curl were found to contain...
[R1] Tenable Identity Exposure Version 3.93.4 Fixes Multiple Vulnerabilities
R1 Tenable Identity Exposure Version 3.93.4 Fixes Multiple Vulnerabilities Arnie Cabral Fri, 10/17/2025 - 10:02 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. One of the third-party components .NET was found to contain vulnerabilities, and updat...