CVE-2024-3290
published 2024-05-17CVE-2024-3290: A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation…
PriorityP338high8.2CVSS 3.1
AVLACLPRLUIRSCCHIHAH
EPSS
0.18%
8.2th percentile
A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tenable | nessus | < 10.7.3 | 10.7.3 |
CVSS provenance
nvdv3.18.2HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-qx57-q6j5-g6mg: A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installa
ghsa_unreviewed·2024-05-17
CVE-2024-3290 [HIGH] CWE-367 GHSA-qx57-q6j5-g6mg: A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installa
A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host
Red Hat
kernel: perf/x86/intel: Limit the period on Haswell
vendor_redhat·2024-09-27·CVSS 5.5
CVE-2024-46848 [MEDIUM] CWE-754 kernel: perf/x86/intel: Limit the period on Haswell
kernel: perf/x86/intel: Limit the period on Haswell
In the Linux kernel, the following vulnerability has been resolved:
perf/x86/intel: Limit the period on Haswell
Running the ltp test cve-2015-3290 concurrently reports the following
warnings.
perfevents: irq loop stuck!
WARNING: CPU: 31 PID: 32438 at arch/x86/events/intel/core.c:3174
intel_pmu_handle_irq+0x285/0x370
Call Trace:
? __warn+0xa4/0x220
? intel_pmu_handle_irq+0x285/0x370
? __report_bug+0x123/0x130
? intel_pmu_handle_irq+0x285/0x370
? __report_bug+0x123/0x130
? intel_pmu_handle_irq+0x285/0x370
? report_bug+0x3e/0xa0
? handle_bug+0x3c/0x70
? exc_invalid_op+0x18/0x50
? asm_exc_invalid_op+0x1a/0x20
? irq_work_claim+0x1e/0x40
? intel_pmu_handle_irq+0x285/0x370
perf_event_nmi_handler+0x3d/0x60
nmi_handle+0x104/0x330
Thanks to Thoma
No detection rules found.
No public exploits indexed.
2024-05-17
Published