cvedb.io
CVE-2022-33757
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2022-10-25T17:15:53.377 · Last modified 2026-06-17T04:49:23.020

Summary

An authenticated attacker could read Nessus Debug Log file attachments from the web UI without having the correct privileges to do so. This may lead to the disclosure of information on the scan target and/or the Nessus scan to unauthorized parties able to reach the Nessus instance.

Affected products

tenable — nessus

Does this affect you?

Add your gear to cvedb and we'll alert you only when tenable ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.