cvelistv5 - cve-2024-3289

CVE-2024-3289 (GCVE-0-2024-3289)

Vulnerability from cvelistv5

Published

2024-05-17 16:50

Modified

2024-08-01 20:05

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-281 - Improper Preservation of Permissions

Summary

When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location.

References

URL

Tags

	vulnreport@tenable.com	https://www.tenable.com/security/tns-2024-08
	af854a3a-2127-422b-91ae-364da2661108	https://www.tenable.com/security/tns-2024-08

Impacted products

	Vendor	Product	Version
	Tenable	Nessus	Version: 0 < 10.7.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:tenable:nessus:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "nessus",
            "vendor": "tenable",
            "versions": [
              {
                "lessThanOrEqual": "10.7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-3289",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-17T17:25:00.596927Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-06T17:35:56.532Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T20:05:08.242Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2024-08"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "affected",
          "platforms": [
            "Windows"
          ],
          "product": "Nessus",
          "vendor": "Tenable",
          "versions": [
            {
              "lessThan": "10.7.3",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2024-05-16T19:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\nWhen installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location.\u0026nbsp;"
            }
          ],
          "value": "When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-281",
              "description": "CWE-281 Improper Preservation of Permissions",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-17T16:50:48.745Z",
        "orgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be",
        "shortName": "tenable"
      },
      "references": [
        {
          "url": "https://www.tenable.com/security/tns-2024-08"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\nTenable has released Nessus 10.7.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal (\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.tenable.com/downloads/nessus\"\u003ehttps://www.tenable.com/downloads/nessus\u003c/a\u003e).\n\n\u003cbr\u003e"
            }
          ],
          "value": "Tenable has released Nessus 10.7.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal ( https://www.tenable.com/downloads/nessus )."
        }
      ],
      "source": {
        "advisory": "TNS-2024-08",
        "discovery": "EXTERNAL"
      },
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be",
    "assignerShortName": "tenable",
    "cveId": "CVE-2024-3289",
    "datePublished": "2024-05-17T16:50:48.745Z",
    "dateReserved": "2024-04-03T21:03:11.124Z",
    "dateUpdated": "2024-08-01T20:05:08.242Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-3289\",\"sourceIdentifier\":\"vulnreport@tenable.com\",\"published\":\"2024-05-17T17:15:07.310\",\"lastModified\":\"2024-11-21T09:29:19.777\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location.\"},{\"lang\":\"es\",\"value\":\"Al instalar Nessus en un directorio fuera de la ubicaci\u00f3n predeterminada en un host de Windows, las versiones de Nessus anteriores a la 10.7.3 no aplicaban permisos seguros para los subdirectorios. Esto podr\u00eda permitir una escalada de privilegios locales si los usuarios no hubieran protegido los directorios en la ubicaci\u00f3n de instalaci\u00f3n no predeterminada.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"vulnreport@tenable.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"vulnreport@tenable.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-281\"}]}],\"references\":[{\"url\":\"https://www.tenable.com/security/tns-2024-08\",\"source\":\"vulnreport@tenable.com\"},{\"url\":\"https://www.tenable.com/security/tns-2024-08\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.tenable.com/security/tns-2024-08\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T20:05:08.242Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-3289\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-17T17:25:00.596927Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:tenable:nessus:-:*:*:*:*:*:*:*\"], \"vendor\": \"tenable\", \"product\": \"nessus\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"10.7.2\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-17T17:30:26.910Z\"}}], \"cna\": {\"source\": {\"advisory\": \"TNS-2024-08\", \"discovery\": \"EXTERNAL\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Tenable\", \"product\": \"Nessus\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"10.7.3\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows\"], \"defaultStatus\": \"affected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Tenable has released Nessus 10.7.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal ( https://www.tenable.com/downloads/nessus ).\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\\n\\nTenable has released Nessus 10.7.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal (\u003ca target=\\\"_blank\\\" rel=\\\"nofollow\\\" href=\\\"https://www.tenable.com/downloads/nessus\\\"\u003ehttps://www.tenable.com/downloads/nessus\u003c/a\u003e).\\n\\n\u003cbr\u003e\", \"base64\": false}]}], \"datePublic\": \"2024-05-16T19:00:00.000Z\", \"references\": [{\"url\": \"https://www.tenable.com/security/tns-2024-08\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\\n\\nWhen installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location.\u0026nbsp;\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-281\", \"description\": \"CWE-281 Improper Preservation of Permissions\"}]}], \"providerMetadata\": {\"orgId\": \"5ac1ecc2-367a-4d16-a0b2-35d495ddd0be\", \"shortName\": \"tenable\", \"dateUpdated\": \"2024-05-17T16:50:48.745Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-3289\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-01T20:05:08.242Z\", \"dateReserved\": \"2024-04-03T21:03:11.124Z\", \"assignerOrgId\": \"5ac1ecc2-367a-4d16-a0b2-35d495ddd0be\", \"datePublished\": \"2024-05-17T16:50:48.745Z\", \"assignerShortName\": \"tenable\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

WID-SEC-W-2024-1178

Vulnerability from csaf_certbund

Published

2024-05-16 22:00

Modified

2024-05-16 22:00

Summary

Tenable Security Nessus: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Nessus ist ein Schwachstellen-Scanner, welcher neben bekannten Schwachstellen auch Software-Patchstände und Konfigurationen überprüfen kann.

Angriff

Ein lokaler Angreifer kann mehrere Schwachstellen in Tenable Security Nessus ausnutzen, um seine Privilegien zu erhöhen oder beliebigen Code auszuführen.

Betroffene Betriebssysteme

- Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Nessus ist ein Schwachstellen-Scanner, welcher neben bekannten Schwachstellen auch Software-Patchst\u00e4nde und Konfigurationen \u00fcberpr\u00fcfen kann.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Tenable Security Nessus ausnutzen, um seine Privilegien zu erh\u00f6hen oder beliebigen Code auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1178 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1178.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1178 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1178"
      },
      {
        "category": "external",
        "summary": "Nessus Security Advisory vom 2024-05-16",
        "url": "https://de.tenable.com/security/tns-2024-08"
      }
    ],
    "source_lang": "en-US",
    "title": "Tenable Security Nessus: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-05-16T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:09:09.063+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-1178",
      "initial_release_date": "2024-05-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-05-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.7.3",
                "product": {
                  "name": "Tenable Security Nessus \u003c10.7.3",
                  "product_id": "T034880"
                }
              }
            ],
            "category": "product_name",
            "name": "Nessus"
          }
        ],
        "category": "vendor",
        "name": "Tenable Security"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-3289",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Tenable Security Nessus. Dieser Fehler tritt bei der Installation in einem anderen Verzeichnis als dem Standardspeicherort auf einem Windows-Host auf, da die Rechte f\u00fcr sichere Unterverzeichnisse nicht erzwungen werden. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern."
        }
      ],
      "release_date": "2024-05-16T22:00:00.000+00:00",
      "title": "CVE-2024-3289"
    },
    {
      "cve": "CVE-2024-3290",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Tenable Security Nessus. Dieser Fehler besteht aufgrund einer Race Condition, die es erlaubt, Installationsparameter zu ver\u00e4ndern. Ein lokaler Angreifer kann diese Schwachstelle zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "release_date": "2024-05-16T22:00:00.000+00:00",
      "title": "CVE-2024-3290"
    }
  ]
}

wid-sec-w-2024-1178

Vulnerability from csaf_certbund

Published

2024-05-16 22:00

Modified

2024-05-16 22:00

Summary

Tenable Security Nessus: Mehrere Schwachstellen

Notes

Produktbeschreibung

Nessus ist ein Schwachstellen-Scanner, welcher neben bekannten Schwachstellen auch Software-Patchstände und Konfigurationen überprüfen kann.

Angriff

Ein lokaler Angreifer kann mehrere Schwachstellen in Tenable Security Nessus ausnutzen, um seine Privilegien zu erhöhen oder beliebigen Code auszuführen.

Betroffene Betriebssysteme

- Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Nessus ist ein Schwachstellen-Scanner, welcher neben bekannten Schwachstellen auch Software-Patchst\u00e4nde und Konfigurationen \u00fcberpr\u00fcfen kann.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Tenable Security Nessus ausnutzen, um seine Privilegien zu erh\u00f6hen oder beliebigen Code auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1178 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1178.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1178 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1178"
      },
      {
        "category": "external",
        "summary": "Nessus Security Advisory vom 2024-05-16",
        "url": "https://de.tenable.com/security/tns-2024-08"
      }
    ],
    "source_lang": "en-US",
    "title": "Tenable Security Nessus: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-05-16T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:09:09.063+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-1178",
      "initial_release_date": "2024-05-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-05-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.7.3",
                "product": {
                  "name": "Tenable Security Nessus \u003c10.7.3",
                  "product_id": "T034880"
                }
              }
            ],
            "category": "product_name",
            "name": "Nessus"
          }
        ],
        "category": "vendor",
        "name": "Tenable Security"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-3289",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Tenable Security Nessus. Dieser Fehler tritt bei der Installation in einem anderen Verzeichnis als dem Standardspeicherort auf einem Windows-Host auf, da die Rechte f\u00fcr sichere Unterverzeichnisse nicht erzwungen werden. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern."
        }
      ],
      "release_date": "2024-05-16T22:00:00.000+00:00",
      "title": "CVE-2024-3289"
    },
    {
      "cve": "CVE-2024-3290",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Tenable Security Nessus. Dieser Fehler besteht aufgrund einer Race Condition, die es erlaubt, Installationsparameter zu ver\u00e4ndern. Ein lokaler Angreifer kann diese Schwachstelle zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "release_date": "2024-05-16T22:00:00.000+00:00",
      "title": "CVE-2024-3290"
    }
  ]
}

cnvd-2025-18605

Vulnerability from cnvd

Title

Tenable Network Security Nessus权限提升漏洞

Description

Tenable Network Security Nessus是由Tenable Network Security公司开发的一款网络漏洞扫描工具，主要用于检测操作系统、网络设备、应用程序中的安全漏洞和配置错误。 Tenable Network Security Nessus存在权限提升漏洞，该漏洞源于用户没有保护非默认安装位置中的目录，攻击者可利用该漏洞导致本地权限升级。

Severity

中

Patch Name

Tenable Network Security Nessus权限提升漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级程序修复该安全问题，详情见厂商官网： https://www.tenable.com/security/tns-2024-08

Reference

https://github.com/librespeed/speedtest/security/advisories/GHSA-3954-xrwh-fq4q

Impacted products

Name
Tenable Network Security Nessus <10.7.3（Windows）

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-3289",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-3289"
    }
  },
  "description": "Tenable Network Security Nessus\u662f\u7531Tenable Network Security\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3e\u7f51\u7edc\u6f0f\u6d1e\u626b\u63cf\u5de5\u5177\uff0c\u4e3b\u8981\u7528\u4e8e\u68c0\u6d4b\u64cd\u4f5c\u7cfb\u7edf\u3001\u7f51\u7edc\u8bbe\u5907\u3001\u5e94\u7528\u7a0b\u5e8f\u4e2d\u7684\u5b89\u5168\u6f0f\u6d1e\u548c\u914d\u7f6e\u9519\u8bef\u3002\n\nTenable Network Security Nessus\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7528\u6237\u6ca1\u6709\u4fdd\u62a4\u975e\u9ed8\u8ba4\u5b89\u88c5\u4f4d\u7f6e\u4e2d\u7684\u76ee\u5f55\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u672c\u5730\u6743\u9650\u5347\u7ea7\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u7a0b\u5e8f\u4fee\u590d\u8be5\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u89c1\u5382\u5546\u5b98\u7f51\uff1a\r\nhttps://www.tenable.com/security/tns-2024-08",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-18605",
  "openTime": "2025-08-15",
  "patchDescription": "Tenable Network Security Nessus\u662f\u7531Tenable Network Security\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3e\u7f51\u7edc\u6f0f\u6d1e\u626b\u63cf\u5de5\u5177\uff0c\u4e3b\u8981\u7528\u4e8e\u68c0\u6d4b\u64cd\u4f5c\u7cfb\u7edf\u3001\u7f51\u7edc\u8bbe\u5907\u3001\u5e94\u7528\u7a0b\u5e8f\u4e2d\u7684\u5b89\u5168\u6f0f\u6d1e\u548c\u914d\u7f6e\u9519\u8bef\u3002\r\n\r\nTenable Network Security Nessus\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7528\u6237\u6ca1\u6709\u4fdd\u62a4\u975e\u9ed8\u8ba4\u5b89\u88c5\u4f4d\u7f6e\u4e2d\u7684\u76ee\u5f55\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u672c\u5730\u6743\u9650\u5347\u7ea7\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Tenable Network Security Nessus\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Tenable Network Security Nessus \u003c10.7.3\uff08Windows\uff09"
  },
  "referenceLink": "https://github.com/librespeed/speedtest/security/advisories/GHSA-3954-xrwh-fq4q",
  "serverity": "\u4e2d",
  "submitTime": "2024-05-22",
  "title": "Tenable Network Security Nessus\u6743\u9650\u63d0\u5347\u6f0f\u6d1e"
}

fkie_cve-2024-3289

Vulnerability from fkie_nvd

Published

2024-05-17 17:15

Modified

2024-11-21 09:29

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	vulnreport@tenable.com	https://www.tenable.com/security/tns-2024-08
	af854a3a-2127-422b-91ae-364da2661108	https://www.tenable.com/security/tns-2024-08

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location."
    },
    {
      "lang": "es",
      "value": "Al instalar Nessus en un directorio fuera de la ubicaci\u00f3n predeterminada en un host de Windows, las versiones de Nessus anteriores a la 10.7.3 no aplicaban permisos seguros para los subdirectorios. Esto podr\u00eda permitir una escalada de privilegios locales si los usuarios no hubieran protegido los directorios en la ubicaci\u00f3n de instalaci\u00f3n no predeterminada."
    }
  ],
  "id": "CVE-2024-3289",
  "lastModified": "2024-11-21T09:29:19.777",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "vulnreport@tenable.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-05-17T17:15:07.310",
  "references": [
    {
      "source": "vulnreport@tenable.com",
      "url": "https://www.tenable.com/security/tns-2024-08"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.tenable.com/security/tns-2024-08"
    }
  ],
  "sourceIdentifier": "vulnreport@tenable.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-281"
        }
      ],
      "source": "vulnreport@tenable.com",
      "type": "Secondary"
    }
  ]
}

gsd-2024-3289

Vulnerability from gsd

Modified

2024-04-11 05:03

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2024-3289

JSON

To clipboard

{
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2024-3289"
      ],
      "id": "GSD-2024-3289",
      "modified": "2024-04-11T05:03:27.390920Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2024-3289",
        "STATE": "RESERVED"
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
          }
        ]
      }
    }
  }
}

CERTFR-2024-AVI-0415

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Tenable. Elles permettent à un attaquant de provoquer une exécution de code arbitraire et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Tenable	Nessus	Nessus versions antérieures à 10.7.3
	Tenable	Nessus Agent	Nessus agent versions antérieures à 10.6.4

References

Title

Publication Time

ghsa-92vm-p8p9-g4x5

Vulnerability from github

Published

2024-05-17 18:30

Modified

2024-05-17 18:30

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-3289"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-281"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-05-17T17:15:07Z",
    "severity": "HIGH"
  },
  "details": "When installing Nessus to a directory outside of the default location on a Windows host, Nessus versions prior to 10.7.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location.",
  "id": "GHSA-92vm-p8p9-g4x5",
  "modified": "2024-05-17T18:30:43Z",
  "published": "2024-05-17T18:30:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3289"
    },
    {
      "type": "WEB",
      "url": "https://www.tenable.com/security/tns-2024-08"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2024-3289 (GCVE-0-2024-3289)

Vulnerability from cvelistv5

WID-SEC-W-2024-1178

Vulnerability from csaf_certbund

wid-sec-w-2024-1178

Vulnerability from csaf_certbund

cnvd-2025-18605

Vulnerability from cnvd

fkie_cve-2024-3289

Vulnerability from fkie_nvd

gsd-2024-3289

Vulnerability from gsd

CERTFR-2024-AVI-0415

Vulnerability from certfr_avis

Solution

ghsa-92vm-p8p9-g4x5

Vulnerability from github

Tags

Sightings

Nomenclature