Tenable

Nessus

73 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.78%
  • Veröffentlicht 10.01.2022 14:12:57
  • Zuletzt bearbeitet 05.05.2025 17:17:53

nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

  • EPSS 2.61%
  • Veröffentlicht 10.01.2022 14:12:56
  • Zuletzt bearbeitet 05.05.2025 17:17:53

lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

  • EPSS 3.38%
  • Veröffentlicht 10.01.2022 14:12:56
  • Zuletzt bearbeitet 05.05.2025 17:17:53

defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

  • EPSS 3.38%
  • Veröffentlicht 10.01.2022 14:12:56
  • Zuletzt bearbeitet 05.05.2025 17:17:52

build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

  • EPSS 4.83%
  • Veröffentlicht 10.01.2022 14:12:56
  • Zuletzt bearbeitet 05.05.2025 17:17:52

addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

Exploit
  • EPSS 3.76%
  • Veröffentlicht 06.01.2022 04:15:07
  • Zuletzt bearbeitet 05.05.2025 17:17:28

In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize.

Exploit
  • EPSS 4.2%
  • Veröffentlicht 01.01.2022 19:15:08
  • Zuletzt bearbeitet 05.05.2025 17:17:28

In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory).

  • EPSS 0.3%
  • Veröffentlicht 03.11.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 05:45:59

Nessus versions 8.15.2 and earlier were found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus Agent host. Tenable has included a fix for this issu...

  • EPSS 1.29%
  • Veröffentlicht 21.07.2021 15:15:13
  • Zuletzt bearbeitet 21.11.2024 05:45:56

Nessus Agent versions 8.2.5 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaining administrator privileges on the Nessus host...

  • EPSS 0.45%
  • Veröffentlicht 29.06.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 05:45:53

Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaining administrator privileges on the Nessus host.