CVE-2026-2026

Medium CVSS: 5.4

A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potentially permitting Denial of Service (DoS) attacks.

Vendor

Tenable

Product

Nessus Agent

CWE

CWE-276

Yayın Tarihi

2026-02-13 17:16:14

Güncelleme

2026-02-24 20:26:42

Source Identifier

vulnreport@tenable.com

KEV Date Added

Kategoriler

CWE-276 Nessus Agent MEDIUM Tenable 2026

Referanslar

https://www.tenable.com/security/tns-2026-05

Benzer Kayıtlar

Medium

CVE-2026-2698

An improper access control vulnerability exists where an authenticated user could access areas outside of their authoriz…

Medium

CVE-2026-2697

An Indirect Object Reference (IDOR) in Security Center allows an authenticated remote attacker to escalate privileges vi…

High

CVE-2025-36630

In Tenable Nessus versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could overwrit…

High

CVE-2025-36632

In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could execute c…

High

CVE-2025-36633

In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could arbitrari…

High

CVE-2025-36631

In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could overwrite…