CVE-2022-33757

An authenticated attacker could read Nessus Debug Log file attachments from the web UI without having the correct privileges to do so. This may lead to the disclosure of information on the scan target and/or the Nessus scan to unauthorized parties able to reach the Nessus instance.
References
Link Resource
https://www.tenable.com/security/tns-2022-11 Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:tenable:nessus:*:*:*:*:*:*:*:*

Information

Published : 2022-10-25 05:15

Updated : 2022-10-28 07:47


NVD link : CVE-2022-33757

Mitre link : CVE-2022-33757

Products Affected
CWE