Privilege Escalation Vulnerability in Nessus Agent by Tenable
CVE-2021-20106
6.5MEDIUM
What is CVE-2021-20106?
An issue has been discovered in Nessus Agent versions 8.2.5 and earlier, where a privilege escalation vulnerability exists. This flaw permits Nessus administrator users to upload specially crafted files, potentially enabling them to gain elevated administrator privileges on the Nessus host. Addressing this vulnerability is essential for maintaining secure administration controls and protecting sensitive data.
Affected Version(s)
Nessus Agent Nessus Agent 8.2.5 and earlier