Nessus@* Security Vulnerabilities and Issues — Nessus@* CVE List

Lucene search

TenableNessus*

4 matches found

CVE•added 2017/01/23 9:59 p.m.•191 views

CVE-2016-4055

The duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of Service (ReDoS)."

7.8CVSS6.5AI score0.03501EPSS

CVE•added 2017/03/08 11:59 p.m.•45 views

CVE-2017-6543

Tenable Nessus before 6.10.2 (as used alone or in Tenable Appliance before 4.5.0) was found to contain a flaw that allowed a remote, authenticated attacker to upload a crafted file that could be written to anywhere on the system. This could be used to subsequently gain elevated privileges on the sy...

7.3CVSS7AI score0.00268EPSS

CVE•added 2017/01/31 10:59 p.m.•43 views

CVE-2016-9260

Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files.

5.4CVSS5.2AI score0.00247EPSS

CVE•added 2017/01/05 10:59 p.m.•41 views

CVE-2017-5179

Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9.3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

5.4CVSS5AI score0.00235EPSS