Executive Summary

Informations
NameCVE-2018-1141First vendor Publication2018-03-20
VendorCveLast vendor Modification2018-04-24

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score4.4Attack RangeLocal
Cvss Impact Score6.4Attack ComplexityMedium
Cvss Expoit Score3.4AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

When installing Nessus to a directory outside of the default location, Nessus versions prior to 7.0.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the installation location.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1141

CWE : Common Weakness Enumeration

%idName
100 %CWE-264Permissions, Privileges, and Access Controls

CPE : Common Platform Enumeration

TypeDescriptionCount
Application73

Nessus® Vulnerability Scanner

DateDescription
2018-03-28Name : An application running on the remote host is affected by a local privilege es...
File : nessus_tns_2018_01.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
CONFIRM https://www.tenable.com/security/tns-2018-01
SECTRACK http://www.securitytracker.com/id/1040557

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
DateInformations
2019-07-30 12:10:32
  • Multiple Updates
2019-07-03 12:10:02
  • Multiple Updates
2019-02-13 12:07:01
  • Multiple Updates
2018-04-24 21:19:45
  • Multiple Updates
2018-03-25 09:18:58
  • Multiple Updates
2018-03-20 21:20:14
  • First insertion