Filtered by vendor Tenable Subscriptions
Filtered by product Nessus Subscriptions
Total 64 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2016-1000029 1 Tenable 1 Nessus 2024-11-21 4.8 Medium
Tenable Nessus before 6.8 has a stored XSS issue that requires admin-level authentication to the Nessus UI, and would potentially impact other admins (Tenable IDs 5218 and 5269).
CVE-2016-1000028 1 Tenable 1 Nessus 2024-11-21 4.8 Medium
Tenable Nessus before 6.8 has a stored XSS issue that requires admin-level authentication to the Nessus UI, and would only potentially impact other admins. (Tenable ID 5198).
CVE-2014-4980 1 Tenable 2 Nessus, Web Ui 2024-11-21 N/A
The /server/properties resource in Tenable Web UI before 2.3.5 for Nessus 5.2.3 through 5.2.7 allows remote attackers to obtain sensitive information via the token parameter.
CVE-2014-2848 1 Tenable 2 Nessus, Plugin-set 2024-11-21 N/A
A race condition in the wmi_malware_scan.nbin plugin before 201402262215 for Nessus 5.2.1 allows local users to gain privileges by replacing the dissolvable agent executable in the Windows temp directory with a Trojan horse program.