CVE-2017-7849Incorrect Permission Assignment in Nessus

CWE-732Incorrect Permission Assignment3 documents3 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 90.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Tenable Nessus
Timeline
PublishedApr 19
Latest updateMay 13

Description

Nessus 6.10.x before 6.10.5 was found to be vulnerable to a local denial of service condition due to insecure permissions when running in Agent Mode.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDtenable/nessus5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-gj88-5g85-649p: Nessus 62022-05-13
CVEList
CVE-2017-7849: Nessus 62017-04-19
CVE-2017-7849 — Incorrect Permission Assignment | cvebase