tenable

173 tracked vulnerabilities.

CVE-2023-0101 HIGH
Nessus <10.4.1 - Privilege Escalation
Jan 20, 2023
CVSS 8.8
EPSS 0.00
CVE-2022-4313 HIGH
Nessus < 10.4.2 - Authenticated Remote Code Execution via Scan Variable Manipulation
Mar 15, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-3499 MEDIUM
Nessus < 10.4.0 - Authenticated Sensitive Information Disclosure via Agent and Cluster Node Linking Keys
Oct 31, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-33757 MEDIUM
Nessus < 10.2.0 - Authenticated Improper Access Control in Debug Log File Attachments
Oct 25, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-28291 MEDIUM
Nessus - Authenticated Cleartext Credential Exposure via Process Dumping
Oct 17, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-32974 MEDIUM
Nessus < 10.2.0 - Authenticated Arbitrary File Read via Compliance Audit File
Jun 21, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-32973 HIGH
PowerShell <version> - Privilege Escalation
Jun 21, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-24828 HIGH
Composer < 1.10.26 - Command Injection via VcsDriver getFileContent
Apr 13, 2022
CVSS 8.3
EPSS 0.00
CVE-2022-24785 HIGH
Moment.js 1.0.1-2.29.1 - Path Traversal via Locale Switching
Apr 04, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-0778 HIGH
OpenSSL 1.0.2-1.0.2zc, 1.1.1-1.1.1m, 3.0.0-3.0.1 - Denial of Service via BN_mod_sqrt Infinite Loop
Mar 15, 2022
CVSS 7.5
EPSS 0.07
CVE-2022-23990 HIGH
libexpat < 2.4.4 - Integer Overflow in doProlog Function
Jan 26, 2022
CVSS 7.5
EPSS 0.04
CVE-2022-23852 CRITICAL
libexpat < 2.4.4 - Integer Overflow in XML_GetBuffer
Jan 24, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-0130 HIGH
Tenable.sc 5.14.0-5.19.1 - Unauthenticated Remote Code Execution via Staged File
Jan 14, 2022
CVSS 8.1
EPSS 0.02
CVE-2022-22827 HIGH
libexpat < 2.4.3 - Integer Overflow in storeAtts
Jan 10, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-22826 HIGH
libexpat < 2.4.3 - Integer Overflow in nextScaffoldPart
Jan 10, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-22825 HIGH
libexpat < 2.4.3 - Integer Overflow in xmlparse.c Lookup
Jan 10, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-22824 CRITICAL
libexpat < 2.4.3 - Integer Overflow in defineAttribute
Jan 10, 2022
CVSS 9.8
EPSS 0.00
CVE-2022-22823 CRITICAL
libexpat < 2.4.3 - Integer Overflow in build_model Function
Jan 10, 2022
CVSS 9.8
EPSS 0.00
CVE-2022-22822 CRITICAL
libexpat < 2.4.3 - Integer Overflow in addBinding
Jan 10, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-46143 HIGH
libexpat < 2.4.3 - Integer Overflow in m_groupSize
Jan 06, 2022
CVSS 8.1
EPSS 0.04
CVE-2021-45960 HIGH
libexpat < 2.4.3 - Integer Overflow via Left Shift in storeAtts
Jan 01, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-44790 CRITICAL
Apache HTTP Server < 2.4.52 - Buffer Overflow in mod_lua Multipart Parser
Dec 20, 2021
CVSS 9.8
EPSS 0.86
CVE-2021-44224 HIGH
Apache HTTP Server 2.4.7-2.4.51 - NULL Pointer Dereference and Server-Side Request Forgery via Forward Proxy
Dec 20, 2021
CVSS 8.2
EPSS 0.09
CVE-2021-21707 MEDIUM
PHP <7.3.33, 7.4.26, 8.0.13 - Info Disclosure
Nov 29, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-20135 MEDIUM
Nessus < 8.15.2 - Authenticated Local Privilege Escalation via Executable Execution
Nov 03, 2021
CVSS 6.7
EPSS 0.00
Products
nessus 65 tenable.sc 46 nessus_network_monitor 14 nessus_agent 11 securitycenter 10 log_correlation_engine 9 Nessus 6 security_center 6 Nessus Agent 5 appliance 4 Security Center 3 Terrascan 3 terrascan 3 Tenable Identity Exposure 2 identity_exposure 2 tenable.io 2 web_ui 2 Check_MK 1 SecurityCenter 1 jira_cloud 1 nessus_amazon_machine_image 1 plugin-set 1 plugin_feed 1
Quick Filters
Critical CVEs With Exploits In CISA KEV