Volerion logoVolerion
Volerion logoVolerion

Tenable Nessus Logging Manipulation Vulnerability

Vulnerability

A vulnerability exists in Nessus versions prior to 10.8.4, allowing non-authenticated attackers to modify logging entries by manipulating HTTP requests. This issue arises from improper output neutralization for logs, enabling the alteration of log data.

Impact

Exploitation of this vulnerability allows for unauthorized modification of Nessus log entries, potentially leading to misrepresentation of scan results or activity.

Remediation

Users can upgrade to Nessus version 10.8.4, which addresses this vulnerability. The installation files are available from the Tenable Downloads Portal.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
4.5
impact
2.5
exploitability
7.0
remediation
7.7
relevance
0.0
threat
0.0
urgency
2.9
incentive
5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.