cvelistv5 - CVE-2024-3290

CVE-2024-3290 (GCVE-0-2024-3290)

Vulnerability from cvelistv5 – Published: 2024-05-17 16:54 – Updated: 2024-08-01 20:05

Summary

A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host

Severity ?

8.2 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

CWE

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Assigner

tenable

References

URL

Tags

https://www.tenable.com/security/tns-2024-08

Impacted products

	Vendor	Product	Version
	Tenable	Nessus	Affected: 0 , < 10.7.3 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:tenable:nessus:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "nessus",
            "vendor": "tenable",
            "versions": [
              {
                "lessThanOrEqual": "10.7.2",
                "status": "affected",
                "version": "-",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-3290",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-17T19:23:42.628220Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:33:23.900Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T20:05:08.393Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2024-08"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "affected",
          "platforms": [
            "Windows"
          ],
          "product": "Nessus",
          "vendor": "Tenable",
          "versions": [
            {
              "lessThan": "10.7.3",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2024-05-16T19:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\nA race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host\n\n"
            }
          ],
          "value": "A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host"
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-29",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-29 Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-367",
              "description": "CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-17T16:54:55.570Z",
        "orgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be",
        "shortName": "tenable"
      },
      "references": [
        {
          "url": "https://www.tenable.com/security/tns-2024-08"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\nTenable has released Nessus 10.7.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal (\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.tenable.com/downloads/nessus\"\u003ehttps://www.tenable.com/downloads/nessus\u003c/a\u003e).\n\n\u003cbr\u003e"
            }
          ],
          "value": "Tenable has released Nessus 10.7.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal ( https://www.tenable.com/downloads/nessus )."
        }
      ],
      "source": {
        "advisory": "TNS-2024-08",
        "discovery": "EXTERNAL"
      },
      "title": "Race Condition",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be",
    "assignerShortName": "tenable",
    "cveId": "CVE-2024-3290",
    "datePublished": "2024-05-17T16:54:55.570Z",
    "dateReserved": "2024-04-03T21:12:37.768Z",
    "dateUpdated": "2024-08-01T20:05:08.393Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host\"}, {\"lang\": \"es\", \"value\": \" Existe una vulnerabilidad de condici\\u00f3n de ejecuci\\u00f3n donde un atacante local autenticado en un host Nessus de Windows podr\\u00eda modificar los par\\u00e1metros de instalaci\\u00f3n en el momento de la instalaci\\u00f3n, lo que podr\\u00eda llevar a la ejecuci\\u00f3n de c\\u00f3digo arbitrario en el host Nessus.\"}]",
      "id": "CVE-2024-3290",
      "lastModified": "2024-11-21T09:29:19.910",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"vulnreport@tenable.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H\", \"baseScore\": 8.2, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.5, \"impactScore\": 6.0}]}",
      "published": "2024-05-17T17:15:07.537",
      "references": "[{\"url\": \"https://www.tenable.com/security/tns-2024-08\", \"source\": \"vulnreport@tenable.com\"}, {\"url\": \"https://www.tenable.com/security/tns-2024-08\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "vulnreport@tenable.com",
      "vulnStatus": "Awaiting Analysis",
      "weaknesses": "[{\"source\": \"vulnreport@tenable.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-367\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-3290\",\"sourceIdentifier\":\"vulnreport@tenable.com\",\"published\":\"2024-05-17T17:15:07.537\",\"lastModified\":\"2024-11-21T09:29:19.910\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host\"},{\"lang\":\"es\",\"value\":\" Existe una vulnerabilidad de condici\u00f3n de ejecuci\u00f3n donde un atacante local autenticado en un host Nessus de Windows podr\u00eda modificar los par\u00e1metros de instalaci\u00f3n en el momento de la instalaci\u00f3n, lo que podr\u00eda llevar a la ejecuci\u00f3n de c\u00f3digo arbitrario en el host Nessus.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"vulnreport@tenable.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.5,\"impactScore\":6.0}]},\"weaknesses\":[{\"source\":\"vulnreport@tenable.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-367\"}]}],\"references\":[{\"url\":\"https://www.tenable.com/security/tns-2024-08\",\"source\":\"vulnreport@tenable.com\"},{\"url\":\"https://www.tenable.com/security/tns-2024-08\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.tenable.com/security/tns-2024-08\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T20:05:08.393Z\"}}, {\"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-3290\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-17T19:23:42.628220Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:tenable:nessus:-:*:*:*:*:*:*:*\"], \"vendor\": \"tenable\", \"product\": \"nessus\", \"versions\": [{\"status\": \"affected\", \"version\": \"-\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"10.7.2\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-17T19:23:37.628Z\"}, \"title\": \"CISA ADP Vulnrichment\"}], \"cna\": {\"title\": \"Race Condition\", \"source\": {\"advisory\": \"TNS-2024-08\", \"discovery\": \"EXTERNAL\"}, \"impacts\": [{\"capecId\": \"CAPEC-29\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-29 Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 8.2, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Tenable\", \"product\": \"Nessus\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"10.7.3\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows\"], \"defaultStatus\": \"affected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Tenable has released Nessus 10.7.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal ( https://www.tenable.com/downloads/nessus ).\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\\n\\nTenable has released Nessus 10.7.3 to address these issues. The installation files can be obtained from the Tenable Downloads Portal (\u003ca target=\\\"_blank\\\" rel=\\\"nofollow\\\" href=\\\"https://www.tenable.com/downloads/nessus\\\"\u003ehttps://www.tenable.com/downloads/nessus\u003c/a\u003e).\\n\\n\u003cbr\u003e\", \"base64\": false}]}], \"datePublic\": \"2024-05-16T19:00:00.000Z\", \"references\": [{\"url\": \"https://www.tenable.com/security/tns-2024-08\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\\n\\nA race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host\\n\\n\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-367\", \"description\": \"CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition\"}]}], \"providerMetadata\": {\"orgId\": \"5ac1ecc2-367a-4d16-a0b2-35d495ddd0be\", \"shortName\": \"tenable\", \"dateUpdated\": \"2024-05-17T16:54:55.570Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-3290\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-01T20:05:08.393Z\", \"dateReserved\": \"2024-04-03T21:12:37.768Z\", \"assignerOrgId\": \"5ac1ecc2-367a-4d16-a0b2-35d495ddd0be\", \"datePublished\": \"2024-05-17T16:54:55.570Z\", \"assignerShortName\": \"tenable\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CNVD-2025-18904

Vulnerability from cnvd - Published: 2025-08-18

Title

Tenable Network Security Nessus竞争条件漏洞

Description

Tenable Network Security Nessus是由Tenable Network Security公司开发的一款网络漏洞扫描工具，主要用于检测操作系统、网络设备、应用程序中的安全漏洞和配置错误。 Tenable Network Security Nessus存在竞争条件漏洞，攻击者可利用该漏洞在安装时修改安装参数导致执行任意代码。

Severity

中

Patch Name

Tenable Network Security Nessus竞争条件漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级程序修复该安全问题，详情见厂商官网： https://www.tenable.com/security/tns-2024-08

Reference

https://nvd.nist.gov/vuln/detail/CVE-2024-3290

Impacted products

Name
Tenable Network Security Nessus <=10.7.2

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-3290",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-3290"
    }
  },
  "description": "Tenable Network Security Nessus\u662f\u7531Tenable Network Security\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3e\u7f51\u7edc\u6f0f\u6d1e\u626b\u63cf\u5de5\u5177\uff0c\u4e3b\u8981\u7528\u4e8e\u68c0\u6d4b\u64cd\u4f5c\u7cfb\u7edf\u3001\u7f51\u7edc\u8bbe\u5907\u3001\u5e94\u7528\u7a0b\u5e8f\u4e2d\u7684\u5b89\u5168\u6f0f\u6d1e\u548c\u914d\u7f6e\u9519\u8bef\u3002\n\nTenable Network Security Nessus\u5b58\u5728\u7ade\u4e89\u6761\u4ef6\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5b89\u88c5\u65f6\u4fee\u6539\u5b89\u88c5\u53c2\u6570\u5bfc\u81f4\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u7a0b\u5e8f\u4fee\u590d\u8be5\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u89c1\u5382\u5546\u5b98\u7f51\uff1a\r\nhttps://www.tenable.com/security/tns-2024-08",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-18904",
  "openTime": "2025-08-18",
  "patchDescription": "Tenable Network Security Nessus\u662f\u7531Tenable Network Security\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3e\u7f51\u7edc\u6f0f\u6d1e\u626b\u63cf\u5de5\u5177\uff0c\u4e3b\u8981\u7528\u4e8e\u68c0\u6d4b\u64cd\u4f5c\u7cfb\u7edf\u3001\u7f51\u7edc\u8bbe\u5907\u3001\u5e94\u7528\u7a0b\u5e8f\u4e2d\u7684\u5b89\u5168\u6f0f\u6d1e\u548c\u914d\u7f6e\u9519\u8bef\u3002\r\n\r\nTenable Network Security Nessus\u5b58\u5728\u7ade\u4e89\u6761\u4ef6\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5b89\u88c5\u65f6\u4fee\u6539\u5b89\u88c5\u53c2\u6570\u5bfc\u81f4\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Tenable Network Security Nessus\u7ade\u4e89\u6761\u4ef6\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Tenable Network Security Nessus \u003c=10.7.2"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2024-3290",
  "serverity": "\u4e2d",
  "submitTime": "2024-05-22",
  "title": "Tenable Network Security Nessus\u7ade\u4e89\u6761\u4ef6\u6f0f\u6d1e"
}

GSD-2024-3290

Vulnerability from gsd - Updated: 2024-04-11 05:03

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2024-3290

JSON

To clipboard

{
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2024-3290"
      ],
      "id": "GSD-2024-3290",
      "modified": "2024-04-11T05:03:27.122468Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2024-3290",
        "STATE": "RESERVED"
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
          }
        ]
      }
    }
  }
}

FKIE_CVE-2024-3290

Vulnerability from fkie_nvd - Published: 2024-05-17 17:15 - Updated: 2024-11-21 09:29

Severity ?

8.2 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Summary

References

	URL	Tags
	vulnreport@tenable.com	https://www.tenable.com/security/tns-2024-08
	af854a3a-2127-422b-91ae-364da2661108	https://www.tenable.com/security/tns-2024-08

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host"
    },
    {
      "lang": "es",
      "value": " Existe una vulnerabilidad de condici\u00f3n de ejecuci\u00f3n donde un atacante local autenticado en un host Nessus de Windows podr\u00eda modificar los par\u00e1metros de instalaci\u00f3n en el momento de la instalaci\u00f3n, lo que podr\u00eda llevar a la ejecuci\u00f3n de c\u00f3digo arbitrario en el host Nessus."
    }
  ],
  "id": "CVE-2024-3290",
  "lastModified": "2024-11-21T09:29:19.910",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 8.2,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.5,
        "impactScore": 6.0,
        "source": "vulnreport@tenable.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-05-17T17:15:07.537",
  "references": [
    {
      "source": "vulnreport@tenable.com",
      "url": "https://www.tenable.com/security/tns-2024-08"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.tenable.com/security/tns-2024-08"
    }
  ],
  "sourceIdentifier": "vulnreport@tenable.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-367"
        }
      ],
      "source": "vulnreport@tenable.com",
      "type": "Secondary"
    }
  ]
}

GHSA-QX57-Q6J5-G6MG

Vulnerability from github – Published: 2024-05-17 18:30 – Updated: 2024-05-17 18:30

Details

Severity ?

8.2 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-3290"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-367"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-05-17T17:15:07Z",
    "severity": "HIGH"
  },
  "details": "A race condition vulnerability exists where an authenticated, local attacker on a Windows Nessus host could modify installation parameters at installation time, which could lead to the execution of arbitrary code on the Nessus host",
  "id": "GHSA-qx57-q6j5-g6mg",
  "modified": "2024-05-17T18:30:43Z",
  "published": "2024-05-17T18:30:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3290"
    },
    {
      "type": "WEB",
      "url": "https://www.tenable.com/security/tns-2024-08"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CERTFR-2024-AVI-0415

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Tenable. Elles permettent à un attaquant de provoquer une exécution de code arbitraire et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Tenable	Nessus	Nessus versions antérieures à 10.7.3
	Tenable	Nessus Agent	Nessus agent versions antérieures à 10.6.4

References

Title

Publication Time

Tags

Bulletin de sécurité Tenable tns-2024-08 du 16 mai 2024	None	vendor-advisory
Bulletin de sécurité Tenable tns-2024-09 du 16 mai 2024	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Nessus versions ant\u00e9rieures \u00e0 10.7.3",
      "product": {
        "name": "Nessus",
        "vendor": {
          "name": "Tenable",
          "scada": false
        }
      }
    },
    {
      "description": "Nessus agent versions ant\u00e9rieures \u00e0 10.6.4",
      "product": {
        "name": "Nessus Agent",
        "vendor": {
          "name": "Tenable",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2024-3290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3290"
    },
    {
      "name": "CVE-2024-3292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3292"
    },
    {
      "name": "CVE-2024-3291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3291"
    },
    {
      "name": "CVE-2024-3289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3289"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0415",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-05-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nTenable. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de\ncode arbitraire et une \u00e9l\u00e9vation de privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Tenable",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Tenable tns-2024-08 du 16 mai 2024",
      "url": "https://www.tenable.com/security/tns-2024-08"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Tenable tns-2024-09 du 16 mai 2024",
      "url": "https://www.tenable.com/security/tns-2024-09"
    }
  ]
}

CERTFR-2024-AVI-0415

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Tenable. Elles permettent à un attaquant de provoquer une exécution de code arbitraire et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Tenable	Nessus	Nessus versions antérieures à 10.7.3
	Tenable	Nessus Agent	Nessus agent versions antérieures à 10.6.4

References

Title

Publication Time

Tags

Bulletin de sécurité Tenable tns-2024-08 du 16 mai 2024	None	vendor-advisory
Bulletin de sécurité Tenable tns-2024-09 du 16 mai 2024	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Nessus versions ant\u00e9rieures \u00e0 10.7.3",
      "product": {
        "name": "Nessus",
        "vendor": {
          "name": "Tenable",
          "scada": false
        }
      }
    },
    {
      "description": "Nessus agent versions ant\u00e9rieures \u00e0 10.6.4",
      "product": {
        "name": "Nessus Agent",
        "vendor": {
          "name": "Tenable",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2024-3290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3290"
    },
    {
      "name": "CVE-2024-3292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3292"
    },
    {
      "name": "CVE-2024-3291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3291"
    },
    {
      "name": "CVE-2024-3289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3289"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0415",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-05-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nTenable. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de\ncode arbitraire et une \u00e9l\u00e9vation de privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Tenable",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Tenable tns-2024-08 du 16 mai 2024",
      "url": "https://www.tenable.com/security/tns-2024-08"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Tenable tns-2024-09 du 16 mai 2024",
      "url": "https://www.tenable.com/security/tns-2024-09"
    }
  ]
}

WID-SEC-W-2024-1178

Vulnerability from csaf_certbund - Published: 2024-05-16 22:00 - Updated: 2024-05-16 22:00

Summary

Tenable Security Nessus: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Nessus ist ein Schwachstellen-Scanner, welcher neben bekannten Schwachstellen auch Software-Patchstände und Konfigurationen überprüfen kann.

Angriff

Ein lokaler Angreifer kann mehrere Schwachstellen in Tenable Security Nessus ausnutzen, um seine Privilegien zu erhöhen oder beliebigen Code auszuführen.

Betroffene Betriebssysteme

- Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Nessus ist ein Schwachstellen-Scanner, welcher neben bekannten Schwachstellen auch Software-Patchst\u00e4nde und Konfigurationen \u00fcberpr\u00fcfen kann.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Tenable Security Nessus ausnutzen, um seine Privilegien zu erh\u00f6hen oder beliebigen Code auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1178 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1178.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1178 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1178"
      },
      {
        "category": "external",
        "summary": "Nessus Security Advisory vom 2024-05-16",
        "url": "https://de.tenable.com/security/tns-2024-08"
      }
    ],
    "source_lang": "en-US",
    "title": "Tenable Security Nessus: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-05-16T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:09:09.063+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-1178",
      "initial_release_date": "2024-05-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-05-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.7.3",
                "product": {
                  "name": "Tenable Security Nessus \u003c10.7.3",
                  "product_id": "T034880"
                }
              }
            ],
            "category": "product_name",
            "name": "Nessus"
          }
        ],
        "category": "vendor",
        "name": "Tenable Security"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-3289",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Tenable Security Nessus. Dieser Fehler tritt bei der Installation in einem anderen Verzeichnis als dem Standardspeicherort auf einem Windows-Host auf, da die Rechte f\u00fcr sichere Unterverzeichnisse nicht erzwungen werden. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern."
        }
      ],
      "release_date": "2024-05-16T22:00:00.000+00:00",
      "title": "CVE-2024-3289"
    },
    {
      "cve": "CVE-2024-3290",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Tenable Security Nessus. Dieser Fehler besteht aufgrund einer Race Condition, die es erlaubt, Installationsparameter zu ver\u00e4ndern. Ein lokaler Angreifer kann diese Schwachstelle zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "release_date": "2024-05-16T22:00:00.000+00:00",
      "title": "CVE-2024-3290"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-3290 (GCVE-0-2024-3290)

CNVD-2025-18904

GSD-2024-3290

FKIE_CVE-2024-3290

GHSA-QX57-Q6J5-G6MG

CERTFR-2024-AVI-0415

Solution

CERTFR-2024-AVI-0415

Solution

WID-SEC-W-2024-1178

Tags

Sightings

Nomenclature