Nessus Security Vulnerabilities and Issues — Nessus CVE List

Lucene search

TenableNessus

3 matches found

CVE•added 2017/01/23 9:59 p.m.•191 views

CVE-2016-4055

The duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of Service (ReDoS)."

7.8CVSS6.5AI score0.03453EPSS

CVE•added 2017/01/31 10:59 p.m.•43 views

CVE-2016-9260

Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files.

5.4CVSS5.2AI score0.00247EPSS

CVE•added 2017/01/05 10:59 p.m.•41 views

CVE-2017-5179

Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9.3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

5.4CVSS5AI score0.00235EPSS