CVE-2017-5179
MEDIUMTenable Nessus <6.9.3 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9.3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Scores
CVSS v3
5.4
EPSS
0.0024
EPSS Percentile
46.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Classification
CWE
CWE-79
Status
published
Affected Products (2)
tenable/nessus
< 6.9.2
n/a/n/a
Timeline
Published
Jan 05, 2017
Tracked Since
Feb 18, 2026