CVE-2021-20106

Summary

Nessus Agent versions 8.2.5 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaining administrator privileges on the Nessus host.

Affected Software

VendorProductVersion RangeStatus
n/aNessus AgentNessus Agent 8.2.5 and earlieraffected

Weaknesses

  • Local Privilege Escalation

ADP Enrichment

CVE Program Container

Additional References

References