RSS   Vulnerabilities for 'Nessus agent'   RSS

2021-09-09
 
CVE-2021-20117

CWE-269
 

 
Nessus Agent 8.3.0 and earlier was found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus Agent host. This is different than CVE-2021-20118.

 
 
CVE-2021-20118

CWE-269
 

 
Nessus Agent 8.3.0 and earlier was found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus Agent host. This is different than CVE-2021-20117.

 
2021-03-19
 
CVE-2021-20077

CWE-732
 

 
Nessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role security token on the local host during initial linking of the Nessus Agent when installed on an Amazon EC2 instance. This could allow a privileged attacker to obtain the token.

 

 >>> Vendor: Tenable 10 Products
Nessus
Plugin-set
Web ui
Log correlation engine
Appliance
Securitycenter
Tenable.sc
Nessus amazon machine image
Jira cloud
Nessus agent


Copyright 2021, cxsecurity.com

 

Back to Top