When linking a Nessus scanner or agent to Tenable.io or other manager, Nessus 6.x prior to 6.11 does not verify the manager's TLS certificate when making the initial outgoing connection. This could allow man-in-the-middle attacks.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
tenable nessus 6.1.1 |
||
tenable nessus 6.1.2 |
||
tenable nessus 6.2.0 |
||
tenable nessus 6.2.1 |
||
tenable nessus 6.5.1 |
||
tenable nessus 6.5.2 |
||
tenable nessus 6.5.3 |
||
tenable nessus 6.5.4 |
||
tenable nessus 6.10.9 |
||
tenable nessus 6.10.8 |
||
tenable nessus 6.10.7 |
||
tenable nessus 6.10.6 |
||
tenable nessus 6.3.3 |
||
tenable nessus 6.3.2 |
||
tenable nessus 6.3.1 |
||
tenable nessus 6.3.0 |
||
tenable nessus 6.6.0 |
||
tenable nessus 6.7.0 |
||
tenable nessus 6.8.1 |
||
tenable nessus 6.8.0 |
||
tenable nessus 6.10.0 |
||
tenable nessus 6.0.0 |
||
tenable nessus 6.0.2 |
||
tenable nessus 6.3.6 |
||
tenable nessus 6.3.4 |
||
tenable nessus 6.4.3 |
||
tenable nessus 6.4.1 |
||
tenable nessus 6.5.0 |
||
tenable nessus 6.5.5 |
||
tenable nessus 6.6.2 |
||
tenable nessus 6.9.2 |
||
tenable nessus 6.9.0 |
||
tenable nessus 6.10.5 |
||
tenable nessus 6.10.3 |
||
tenable nessus 6.10.1 |
||
tenable nessus 6.0.1 |
||
tenable nessus 6.1.0 |
||
tenable nessus 6.3.7 |
||
tenable nessus 6.3.5 |
||
tenable nessus 6.4.2 |
||
tenable nessus 6.4.0 |
||
tenable nessus 6.5.6 |
||
tenable nessus 6.6.1 |
||
tenable nessus 6.9.3 |
||
tenable nessus 6.9.1 |
||
tenable nessus 6.10.4 |
||
tenable nessus 6.10.2 |
Vulmon