Filter
AND
Software
CVE-2024-1683DLL Injection in Tenable Identity Exposure Secure Relay
7.3
First published (updated )
Tenable Security CenterCommand Injection Vulnerability in Tenable Security Center
7.2
First published (updated )
Tenable Nessus Under certain conditions, a low privileged attacker could load a specially crafted file during inst…
7.3
EPSS
0.07%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tenable NessusTenable Plugin Feed ID #202306261202 Fixes Privilege Escalation Vulnerability
8.8
First published (updated )
Tenable NessusA vulnerability was reported where through modifying the scan variables, an authenticated user in Te…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tenable NessusAs part of our Security Development Lifecycle, a potential privilege escalation issue was identified…
8.8
First published (updated )
Tenable NessusA privilege escalation vulnerability was identified in Nessus versions 8.10.1 through 8.15.8 and 10.…
8.8
First published (updated )
composer/composer/composerMissing input validation can lead to command execution in composer
8.8
First published (updated )
redhat/opensslInfinite loop in BN_mod_sqrt() reachable when parsing certificates
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tenable Tenable.scTenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerabilit…
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apple Mac OS XPossible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier
8.2
First published (updated )
Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `of` option of the `.position()` util
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Debian Debian LinuxNULL pointer dereference in httpd core
7.5
First published (updated )
Tenable Nessus AgentNessus Agent 8.3.0 and earlier was found to contain a local privilege escalation vulnerability which…
7.2
First published (updated )
Tenable Nessus AgentNessus Agent 8.3.0 and earlier was found to contain a local privilege escalation vulnerability which…
7.2
First published (updated )
McAfee ePolicy OrchestratorRead buffer overruns processing ASN.1 strings
7.4
First published (updated )
Tenable NessusNessus Agent versions 8.2.5 and earlier were found to contain a privilege escalation vulnerability w…
8.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tenable NessusNessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which …
7.2
First published (updated )
redhat/jbcs-httpd24-httpdRequest splitting via HTTP/2 method injection and mod_proxy
7.5
First published (updated )
Tenable Nessus Network MonitorCA certificate check bypass with X509_V_FLAG_X509_STRICT
7.4
First published (updated )
Nodejs Node.jsNULL pointer deref in signature_algorithms processing
7.5
First published (updated )
Tenable Nessus AgentNessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role security …
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tenable Jira CloudExecution of untrusted code through config file
8.6
First published (updated )
Tenable Tenable.scTenable.sc and Tenable.sc Core versions 5.13.0 through 5.17.0 were found to contain a vulnerability …
8.8
First published (updated )
McAfee ePolicy OrchestratorInteger overflow in CipherUpdate
7.5
First published (updated )
Tenable Nessus Network MonitorNull pointer deref in X509_issuer_and_serial_hash()
7.5
First published (updated )
Tenable Tenable.scIn certain scenarios in Tenable.sc prior to 5.17.0, a scanner could potentially be used outside the …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tenable Nessus Network MonitorA vulnerability in Nessus Network Monitor versions 5.11.0, 5.11.1, and 5.12.0 for Windows could allo…
7.8
First published (updated )
Tenable Nessus AgentA vulnerability in Nessus versions 8.9.0 through 8.12.0 for Windows & Nessus Agent 8.0.0 and 8.1.0 f…
7.8
First published (updated )
Tenable NessusNessus versions 8.11.0 and earlier were found to maintain sessions longer than the permitted period …
7.1
First published (updated )
Oracle PeopleSoft Enterprise PeopleToolsSegmentation fault in SSL_check_chain
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu Linuxmb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full
8.8
First published (updated )
PHP PHPlink() silently truncates after a null byte on Windows
7.5
First published (updated )
Tenable NessusNessus 8.5.2 and earlier on Windows platforms were found to contain an issue where certain system fi…
8.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.