Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / tenable

tenable

173 tracked vulnerabilities.

CVE-2024-3292 HIGH

Nessus <unknown> - Privilege Escalation

CVE-2024-3291 HIGH

Nessus Agent <10.6.4 - Privilege Escalation

CVE-2024-3290 HIGH

Nessus < 10.7.3 - Authenticated Time-of-check Time-of-use Race Condition

CVE-2024-3289 HIGH

Nessus <10.7.3 - Privilege Escalation

CVE-2024-2390 HIGH

Nessus Plugin - Privilege Escalation

CVE-2024-1683 HIGH

Tenable Identity Exposure < 3.59.4 - Authenticated DLL Injection via Application File Modification

CVE-2024-1471 MEDIUM

Tenable Security Center < 6.3.0 - Authenticated HTML Injection via Repository Parameters

CVE-2024-1367 HIGH

Tenable Security Center < 6.3.0 - Authenticated OS Command Injection via Logging Parameters

CVE-2024-0971 MEDIUM

Nessus < 10.7.0 - Authenticated SQL Injection

CVE-2024-0955 MEDIUM

Nessus < 10.7.0 - Authenticated Stored Cross-Site Scripting via Proxy Settings

CVE-2023-6178 MEDIUM

Nessus < 10.4.4 - Authenticated Arbitrary File Write via Rules Variables

CVE-2023-6062 MEDIUM

Nessus < 10.5.7 - Authenticated Arbitrary File Write via Rules Variables

CVE-2023-5847 MEDIUM

Nessus < 10.6.2 and Nessus Agent < 10.4.3 - Privilege Escalation via Crafted File During Installation or Upgrade

CVE-2023-5624 HIGH

Nessus Network Monitor < 6.3.0 - Authenticated Blind SQL Injection via Parameter Alteration

CVE-2023-5623 HIGH

Nessus Network Monitor < 6.3.0 - Incorrect Default Permissions

CVE-2023-5622 HIGH

Nessus Network Monitor < 6.3.0 - Privilege Escalation via File Replacement

CVE-2023-3253 MEDIUM

Nessus < 10.6.0 - Authenticated User Enumeration via Improper Authorization

CVE-2023-3252 MEDIUM

Nessus < 10.6.0 - Authenticated Arbitrary File Write via Logging Variables

CVE-2023-3251 MEDIUM

Nessus < 10.6.0 - Authenticated SMTP Credential Exposure

CVE-2023-2005 MEDIUM

Tenable Nessus, SecurityCenter, Tenable.io - Uncontrolled Search Path Element

CVE-2023-0524 HIGH

Nessus - Privilege Escalation via Plugin Environment Variable Manipulation

CVE-2023-24495 MEDIUM

Tenable.sc 5.23.1 - Authenticated Server-Side Request Forgery

CVE-2023-24494 MEDIUM

Tenable.sc < 5.23.1 - Authenticated Stored Cross-Site Scripting

CVE-2023-24493 MEDIUM

Tenable.sc < 5.23.1 - Authenticated Formula Injection via Report Export

CVE-2023-0476 MEDIUM

Tenable.sc < 5.23.1 - Authenticated LDAP Injection

Previous Page 2 of 7 Next

Products

nessus 65 tenable.sc 46 nessus_network_monitor 14 nessus_agent 11 securitycenter 10 log_correlation_engine 9 Nessus 6 security_center 6 Nessus Agent 5 appliance 4 Security Center 3 Terrascan 3 terrascan 3 Tenable Identity Exposure 2 identity_exposure 2 tenable.io 2 web_ui 2 Check_MK 1 SecurityCenter 1 jira_cloud 1 nessus_amazon_machine_image 1 plugin-set 1 plugin_feed 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy