Search 187964 CVE descriptions
and 85075 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Title:Tenable Nessus Agent < 7.6.3 Multiple Third-party Vulnerabilities (TNS-2020-03)
Summary:This host is running Tenable Nessus Agent and is prone to multiple vulnerabilities.
This host is running Tenable Nessus Agent and is prone to multiple vulnerabilities.

Vulnerability Insight:
Nessus Agent leverages third-party software to help provide underlying
functionality. One of the third-party components (OpenSSL) was found to contain a multiple vulnerabilities,
and updated versions have been made available by the providers.

Vulnerability Impact:
Successful exploitation may lead to:

- A buffer overflow condition (CVE-2019-1551)

- Server or client applications may crash due to a NULL pointer dereference as a result of incorrect
handling of the 'signature_algorithms_cert' TLS extension (CVE-2020-1967)

Affected Software/OS:
Tenable Nessus Agent versions prior to version 7.6.3.

Update to Tenable Nessus Agent version 7.6.3 or later.
Please see the references for more information.

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2019-1551
Bugtraq: 20191225 [slackware-security] openssl (SSA:2019-354-01) (Google Search)
Bugtraq: 20191229 [SECURITY] [DSA 4594-1] openssl1.0 security update (Google Search);a=commitdiff;h=419102400a2811582a7a3d4a4e317d72e5ce0a8f;a=commitdiff;h=f1c5eea8a817075d31e43f5876993c6710238c98
Debian Security Information: DSA-4594 (Google Search)
SuSE Security Announcement: openSUSE-SU-2020:0062 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2020-1967;a=commitdiff;h=eb563247aef3e83dda7679c43f9649270462e5b1
Debian Security Information: DSA-4661 (Google Search)
FreeBSD Security Advisory: FreeBSD-SA-20:11
SuSE Security Announcement: openSUSE-SU-2020:0933 (Google Search)
SuSE Security Announcement: openSUSE-SU-2020:0945 (Google Search)
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2020 E-Soft Inc. All rights reserved.