5 matches found
CVE-2023-5847
CVE-2023-5847 is evidenced in connected docs as a local privilege escalation affecting Tenable Nessus/Nessus Agent. The flaw enables a low-privileged attacker to load a crafted file during installation or upgrade, potentially escalating to SYSTEM/root by exploiting OpenSSL configuration handling ...
CVE-2026-2026
The CVE-2026-2026 entry concerns the Nessus Agent for Windows with weak file permissions in its installation directory, allowing unauthorized access that can lead to Denial of Service. Reported CVSS metrics indicate a Local attack with Low privilege required and No user interaction, contributing ...
CVE-2025-36631
CVE-2025-36631 affects Tenable Agent on Windows before version 10.8.5, where a non-administrative user could overwrite arbitrary local system files with content written to logs, executing with SYSTEM privileges (local privilege escalation). The issue is confirmed across multiple sources in the co...
CVE-2025-36633
CVE-2025-36633 affects Tenable Agent on Windows prior to version 10.8.5. A non-administrative user could delete local system files with SYSTEM privileges, enabling local privilege escalation. The issue is documented across multiple feeds (NVD, Red Hat, CNVD, PT Security, etc.). The remediation co...
CVE-2025-36632
CVE-2025-36632 affects Tenable Agent on Windows prior to 10.8.5, where a non-administrative user can execute code with SYSTEM privileges. The vulnerability is documented across multiple sources (including Red Hat, NVD, CNVD) as a local privilege escalation in Tenable Agent; Tenable has released v...