漏洞类别:CGI
漏洞等级: 
漏洞信息
Tenable virtual appliances deliver power, deployment speed and all around ease of use by virtually eliminating installation, configuration and maintenance problems.
The Tenable Appliance contain several vulnerabilities. One exists in the underlying operating system kernel, two in the Appliance web interface, and multiple issues in bundled applications.
Affected Versions:
Tenable Appliance versions 3.4.0, 3.5.0, 3.5.1, 3.10.0, 3.10.1, 4.0.0, 4.1.0, 4.2.0, 4.3.0, 4.3.1, 4.4.0 are affected.
QID Detection Logic (Unauthenticated):
This QID sends a crafted HTTP request on TCP port 8000 and checks for the system response.
漏洞危害
Successful exploitation of these vulnerabilities could allow an attacker to take control of the affected system.
解决方案
Customers are advised to refer to tns-2017-07 for updates pertaining to this vulnerability.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论