Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTenableCVELIST:CVE-2019-3962
HistoryJul 01, 2019 - 7:39 p.m.

CVE-2019-3962

2019-07-0119:39:06
tenable
www.cve.org

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.5%

JSON

Content Injection vulnerability in Tenable Nessus prior to 8.5.0 may allow an authenticated, local attacker to exploit this vulnerability by convincing another targeted Nessus user to view a malicious URL and use Nessus to send fraudulent messages. Successful exploitation could allow the authenticated adversary to inject arbitrary text into the feed status, which will remain saved post session expiration.

CNA Affected

[
  {
    "product": "Nessus",
    "vendor": "Tenable",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to 8.5.0"
      }
    ]
  }
]

Related

prion 1
nvd 1
cve 1
nessus 1
openvas 1
prion
prion
Code injection
2019-07-01 20:15:00
nvd
nvd
CVE-2019-3962
2019-07-01 20:15:11
cve
cve
CVE-2019-3962
2019-07-01 20:15:11
nessus
nessus
Tenable Nessus < 8.5.0 Multiple Vulnerabilities (TNS-2019-04)
2019-07-11 00:00:00
openvas
openvas
Tenable Nessus <= 8.4.0 Multiple XSS Vulnerabilities (TNS-2019-04)
2019-06-26 00:00:00

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.5%

JSON
Related for CVELIST:CVE-2019-3962
prion1nvd1cve1nessus1openvas1