The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Nessus

2 Nessus: denial of service via File Overwritte
An attacker can trigger a fatal error via File Overwritte of Nessus, in order to trigger a denial of service...
CERTFR-2019-AVI-387, CVE-2019-3974, TNS-2019-05, VIGILANCE-VUL-30054
1 Nessus: Cross Site Scripting via Feed Status Injection
An attacker can trigger a Cross Site Scripting via Feed Status Injection of Nessus, in order to run JavaScript code in the context of the web site...
CVE-2019-3962, TNS-2019-04, VIGILANCE-VUL-29670
2 Tenable Nessus: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Tenable Nessus, in order to run JavaScript code in the context of the web site...
CERTFR-2019-AVI-294, CVE-2019-3961, TNS-2019-04, VIGILANCE-VUL-29629
2 Node.js moment: denial of service via Regular Expression
An attacker can trigger a fatal error via Regular Expression of Node.js moment, in order to trigger a denial of service...
CERTFR-2019-AVI-132, CVE-2016-4055, NPM-55, TNS-2019-02, VIGILANCE-VUL-28878
2 OpenSSL 1.0.2: information disclosure via 0-byte Record Padding Oracle
An attacker can bypass access restrictions to data via 0-byte Record Padding Oracle of OpenSSL 1.0.2, in order to obtain sensitive information...
bulletinapr2019, bulletinjul2019, CERTFR-2019-AVI-080, CERTFR-2019-AVI-132, CERTFR-2019-AVI-214, CERTFR-2019-AVI-325, cpuapr2019, cpujul2019, cpuoct2019, CVE-2019-1559, DLA-1701-1, DSA-4400-1, FEDORA-2019-00c25b9379, ibm10876638, ibm10886237, ibm10886659, JSA10949, openSUSE-SU-2019:1076-1, openSUSE-SU-2019:1105-1, openSUSE-SU-2019:1173-1, openSUSE-SU-2019:1175-1, openSUSE-SU-2019:1432-1, openSUSE-SU-2019:1637-1, PAN-SA-2019-0039, RHBUG-1683804, RHBUG-1683807, RHSA-2019:2304-01, RHSA-2019:2471-01, SB10282, SSA:2019-057-01, SSB-439005, STORM-2019-001, SUSE-SU-2019:0572-1, SUSE-SU-2019:0600-1, SUSE-SU-2019:0658-1, SUSE-SU-2019:0803-1, SUSE-SU-2019:0818-1, SUSE-SU-2019:1362-1, SUSE-SU-2019:14091-1, SUSE-SU-2019:14092-1, SUSE-SU-2019:1553-1, SUSE-SU-2019:1608-1, SYMSA1490, TNS-2019-02, USN-3899-1, VIGILANCE-VUL-28600
2 Nessus: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Nessus, in order to run JavaScript code in the context of the web site...
CVE-2019-3923, TNS-2019-01, VIGILANCE-VUL-28434
1 OpenSSL: information disclosure via ECC Scalar Multiplication
On an Intel processor (VIGILANCE-VUL-27667), an attacker can measure the execution time of the ECC Scalar Multiplication of OpenSSL, in order to obtain the used key...
bulletinjan2019, CERTFR-2018-AVI-607, CERTFR-2019-AVI-242, cpuapr2019, cpujan2019, cpujul2019, CVE-2018-5407, DLA-1586-1, DSA-4348-1, DSA-4355-1, ibm10794537, ibm10875298, ibm10886313, K49711130, openSUSE-SU-2018:3903-1, openSUSE-SU-2018:4050-1, openSUSE-SU-2018:4104-1, openSUSE-SU-2019:0088-1, openSUSE-SU-2019:0234-1, RHSA-2019:0483-01, RHSA-2019:2125-01, SSA:2018-325-01, SUSE-SU-2018:3864-1, SUSE-SU-2018:3864-2, SUSE-SU-2018:3866-1, SUSE-SU-2018:3964-1, SUSE-SU-2018:3989-1, SUSE-SU-2018:4001-1, SUSE-SU-2018:4068-1, SUSE-SU-2018:4274-1, SUSE-SU-2019:0117-1, SUSE-SU-2019:0395-1, SUSE-SU-2019:1553-1, SYMSA1490, TNS-2018-16, TNS-2018-17, USN-3840-1, VIGILANCE-VUL-27760
1 OpenSSL: information disclosure via DSA Signature Generation
An attacker can bypass access restrictions to data via DSA Signature Generation of OpenSSL, in order to obtain sensitive information...
bulletinapr2019, bulletinjan2019, CERTFR-2018-AVI-607, cpuapr2019, cpujan2019, cpujul2019, CVE-2018-0734, DSA-4348-1, DSA-4355-1, FEDORA-2019-00c25b9379, ibm10794537, ibm10875298, openSUSE-SU-2018:3890-1, openSUSE-SU-2018:3903-1, openSUSE-SU-2018:4050-1, openSUSE-SU-2018:4104-1, openSUSE-SU-2019:0084-1, openSUSE-SU-2019:0088-1, openSUSE-SU-2019:0138-1, openSUSE-SU-2019:0234-1, openSUSE-SU-2019:1547-1, openSUSE-SU-2019:1814-1, RHSA-2019:2304-01, RHSA-2019:3700-01, SSA:2018-325-01, SUSE-SU-2018:3863-1, SUSE-SU-2018:3864-1, SUSE-SU-2018:3864-2, SUSE-SU-2018:3866-1, SUSE-SU-2018:3964-1, SUSE-SU-2018:3989-1, SUSE-SU-2018:4001-1, SUSE-SU-2018:4068-1, SUSE-SU-2018:4274-1, SUSE-SU-2019:0117-1, SUSE-SU-2019:0395-1, SUSE-SU-2019:1553-1, TNS-2018-16, TNS-2018-17, USN-3840-1, VIGILANCE-VUL-27640
2 libjpeg: denial of service via get_text_rgb_row
An attacker can generate a fatal error via get_text_rgb_row() of libjpeg, in order to trigger a denial of service...
CERTFR-2018-AVI-288, CVE-2018-11214, DLA-1638-1, RHSA-2019:2052-01, TNS-2018-08, USN-3706-1, USN-3706-2, VIGILANCE-VUL-26428
2 expat: privilege escalation via DLL Hijacking WriteRandomBytes_RtlGenRandom
An attacker can bypass restrictions via DLL Hijacking WriteRandomBytes_RtlGenRandom() of expat, in order to escalate his privileges...
CERTFR-2018-AVI-288, CVE-2017-11742, TNS-2018-08, VIGILANCE-VUL-26427
Our database contains other pages. You can request a free trial to read them.

Display information about Nessus: