The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Nessus

Nessus: privilege escalation
An attacker can bypass restrictions of Nessus, in order to escalate his privileges...
CERTFR-2020-AVI-696, CVE-2020-5793, TNS-2020-08, VIGILANCE-VUL-33745
Nessus: privilege escalation via Unexpired Sessions
An attacker can bypass restrictions via Unexpired Sessions of Nessus, in order to escalate his privileges...
CERTFR-2020-AVI-519, CVE-2020-5774, TNS-2020-06, VIGILANCE-VUL-33133
Nessus: Cross Site Scripting via User Interface
An attacker can trigger a Cross Site Scripting via User Interface of Nessus, in order to run JavaScript code in the context of the web site...
CERTFR-2020-AVI-449, CVE-2020-5765, TNS-2020-05, VIGILANCE-VUL-32620
OpenSSL: NULL pointer dereference via SSL_check_chain
An attacker can force a NULL pointer to be dereferenced via SSL_check_chain() of OpenSSL, in order to trigger a denial of service...
6235728, 6409294, bulletinjul2020, CERTFR-2020-AVI-235, cpujul2020, cpuoct2020, CVE-2020-1967, DSA-4661-1, FreeBSD-SA-20:11.openssl, JSA11074, openSUSE-SU-2020:0933-1, openSUSE-SU-2020:0945-1, SUSE-SU-2020:1058-1, SUSE-SU-2020:2041-1, VIGILANCE-VUL-32076
jQuery Core: Cross Site Scripting via HtmlPrefilter Regex
An attacker can trigger a Cross Site Scripting via HtmlPrefilter Regex of jQuery Core, in order to run JavaScript code in the context of the web site...
20200601, 20200602, 20200603, 20200604, 20200605, 6217392, 6253319, 6344075, 6367943, 6413705, CERTFR-2020-AVI-310, CERTFR-2020-AVI-335, CERTFR-2020-AVI-797, cpujan2021, cpujul2020, cpuoct2020, CVE-2020-11022, CVE-2020-11023, DRUPAL-SA-CORE-2020-002, DRUPAL-SA-CORE-2020-003, DSA-2020-262, DSA-2020-270, DSA-4693-1, FEDORA-2020-0b32a59b54, FEDORA-2020-11be4b36d4, FEDORA-2020-7dddce530c, FEDORA-2020-8a15713da2, FEDORA-2020-fbb94073a1, JRASERVER-72052, K02453220, K66544153, KM03758436, NPM-1518, openSUSE-SU-2020:1060-1, openSUSE-SU-2020:1106-1, openSUSE-SU-2020:1888-1, OSA-2020-14, RHSA-2020:3936-01, RHSA-2020:4670-01, RHSA-2020:4847-01, TNS-2020-10, VIGILANCE-VUL-32007
Nessus: denial of service
An attacker can trigger a fatal error of Nessus, in order to trigger a denial of service...
CERTFR-2019-AVI-529, CVE-2019-3982, TNS-2019-06, VIGILANCE-VUL-30701
Nessus: denial of service via File Overwritte
An attacker can trigger a fatal error via File Overwritte of Nessus, in order to trigger a denial of service...
CERTFR-2019-AVI-387, CVE-2019-3974, TNS-2019-05, VIGILANCE-VUL-30054
Nessus: Cross Site Scripting via Feed Status Injection
An attacker can trigger a Cross Site Scripting via Feed Status Injection of Nessus, in order to run JavaScript code in the context of the web site...
CVE-2019-3962, TNS-2019-04, VIGILANCE-VUL-29670
Tenable Nessus: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Tenable Nessus, in order to run JavaScript code in the context of the web site...
CERTFR-2019-AVI-294, CVE-2019-3961, TNS-2019-04, VIGILANCE-VUL-29629
jQuery Core: privilege escalation via Object.prototype Pollution
An attacker can bypass restrictions via Object.prototype Pollution of jQuery Core, in order to escalate his privileges...
bulletinoct2019, cpuapr2020, cpujan2020, cpujul2019, cpujul2020, cpuoct2019, cpuoct2020, CST-7312, CVE-2019-11358, DLA-1797-1, DLA-2118-1, DRUPAL-SA-CORE-2019-005, DRUPAL-SA-CORE-2019-006, DSA-4460-1, EZSA-2019-005, FEDORA-2019-2a0ce0c58c, FEDORA-2019-a06dffab1c, FEDORA-2019-f563e66380, NTAP-20190919-0001, openSUSE-SU-2019:1839-1, openSUSE-SU-2019:1872-1, RHSA-2019:1456-01, RHSA-2020:3936-01, RHSA-2020:4670-01, RHSA-2020:4847-01, SA44601, Synology-SA-19:19, VIGILANCE-VUL-29030
Our database contains other pages. You can request a free trial to read them.

Display information about Nessus: