IAM Role Token Exposure in Nessus Agent on Amazon EC2 Instances
CVE-2021-20077

6.7MEDIUM

Key Information:

Vendor

Tenable

Status
Tenable Nessus Agent
Vendor
CVE Published:
19 March 2021

What is CVE-2021-20077?

In Nessus Agent versions 7.2.0 through 8.2.2, a vulnerability arises when the agent is linked on Amazon EC2 instances, inadvertently capturing the IAM role security token on the local host. This exposure may allow an attacker with local privileges to retrieve the security token, potentially leading to unauthorized access to associated AWS resources.

Affected Version(s)

Tenable Nessus Agent 7.2.0 through 8.2.2

References

https://www.tenable.com/security/tns-2021-04-0
x_refsource_MISC
https://www.tenable.com/security/tns-2021-07
x_refsource_MISC
https://www.tenable.com/security/tns-2021-04-0
x_refsource_CONFIRM

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.