Vulnerability DatabaseCVE-2022-28291

CVE-2022-28291:
Tenable Nessus vulnerability analysis and mitigation

Overview

CVE-2022-28291 is a medium severity vulnerability discovered in Tenable's Nessus Professional scanner, identified as 'Sensitive Information Disclosure' with a CVSS V3 score of 6.5. The vulnerability affects all versions of Nessus Essentials and Professional, and was discovered in April 2022 (CSW Blog).

Technical details

The vulnerability is mapped to CWE-522 (Insufficiently Protected Credentials) and involves insufficient protection of stored credentials. An authenticated user with debug privileges can retrieve stored Nessus policy credentials from the 'nessusd' process in cleartext through process dumping (NVD, CSW Blog).

Impact

The vulnerability allows attackers to access credentials stored in Nessus scanners, potentially compromising customers' network of assets. With the disclosed credentials, attackers can potentially compromise an organization's associated assets and networks, leading to infiltration and breach (CSW Blog).

Mitigation and workarounds

Tenable initially proposed a potential fix in Nessus 10.4 or later release, but after additional reviews, they deemed the reported vulnerability as an acceptable risk and decided there would be no fix for this issue (CSW Blog).