Threat Encyclopedia

Privilege Escalation and Malicious File Creation for Tenable Nessus

Description

Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaining administrator privileges on the Nessus host.

Affected Products

Tenable Nessus

CVE References

CVE-2021-20077 CVE-2020-5793