Vulnerabilities

CVE-2024-0955

by Fred · 07/02/2024

A stored XSS vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could alter Nessus proxy settings, which could lead to the execution of remote arbitrary scripts.

More information : https://www.tenable.com/security/tns-2024-01

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : HIGH
User interaction : REQUIRED
Confidentiality impact : LOW
Integrity impact : LOW
Base score : 4.8
Base severity : MEDIUM
Exploitability score : 1.7
Impact score : 2.7

Similar

Tags: Cybersecurity Alert