Home

CVE-2017-7850

Description

Nessus 6.10.x before 6.10.5 was found to be vulnerable to a local privilege escalation issue due to insecure permissions when running in Agent Mode.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.028

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2017-11506,CVE-2017-7199,CVE-2017-7849,CVE-2017-7850 are affected in Nessus Agent (x64) 6.10.0Windows
Multiple Vulnerabilities are affected in Nessus Agent (x64) 6.10.1Windows
Vulnerabilities CVE-2017-11506,CVE-2017-7199,CVE-2017-7849,CVE-2017-7850 are affected in Nessus Agent (x64) 6.10.2Windows
Vulnerabilities CVE-2017-11506,CVE-2017-7199,CVE-2017-7849,CVE-2017-7850 are affected in Nessus Agent (x64) 6.10.3Windows
Vulnerabilities CVE-2017-11506,CVE-2017-7849,CVE-2017-7850 are affected in Nessus Agent (x64) 6.10.4Windows
Vulnerabilities CVE-2017-11506,CVE-2017-7199,CVE-2017-7849,CVE-2017-7850 are affected in Nessus Agent 6.10.0Windows
Multiple Vulnerabilities are affected in Nessus Agent 6.10.1Windows
Vulnerabilities CVE-2017-11506,CVE-2017-7199,CVE-2017-7849,CVE-2017-7850 are affected in Nessus Agent 6.10.2Windows
Vulnerabilities CVE-2017-11506,CVE-2017-7199,CVE-2017-7849,CVE-2017-7850 are affected in Nessus Agent 6.10.3Windows
Vulnerabilities CVE-2017-11506,CVE-2017-7849,CVE-2017-7850 are affected in Nessus Agent 6.10.4Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-343100Nessus Agent (x64) (10.8.0)
PATCH-343100Nessus Agent (x64) (10.8.0)
PATCH-343100Nessus Agent (x64) (10.8.0)
PATCH-343100Nessus Agent (x64) (10.8.0)
PATCH-343100Nessus Agent (x64) (10.8.0)
PATCH-343099Nessus Agent (10.8.0)
PATCH-343099Nessus Agent (10.8.0)
PATCH-343099Nessus Agent (10.8.0)
PATCH-343099Nessus Agent (10.8.0)
PATCH-343099Nessus Agent (10.8.0)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234