Fortiguard

Improper Privilege Management Vulnerabilities for Nessus Agent

Description

Nessus Agent 8.3.0 and earlier were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific executables on the Nessus Agent host.

Affected Applications

Nessus Agent

CVE References

CVE-2021-20117 CVE-2021-20118

Other References

https://www.tenable.com/security/tns-2021-15

ID	4239
Created	Feb 23, 2022
Description Updated	Feb 23, 2022
Severity
Coverage	FortiClient
OS	Windows
Vendor	Tenable Network Security
Patch	manual
Application	Nessus Agent

Network

Files and Endpoint

Application

Additional SOC Services

Threat Encyclopedia

Improper Privilege Management Vulnerabilities for Nessus Agent

Description

Affected Applications

CVE References

Other References

Telemetry

News / Research

Network

Files and Endpoint

Application

Additional SOC Services

FortiGate

FortiDeceptor

FortiClient

FortiMail

FortiEDR

FortiADC

FortiAnalyzer

FortiCWP

FortiWeb

FortiNDR

FortiSandBox

FortiTester

Threat Lookup

PSIRT

Resources

Threat Encyclopedia

Improper Privilege Management Vulnerabilities for Nessus Agent

Description

Affected Applications

CVE References

Other References

Telemetry