Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2025/VULN359

_____________________________________________________________________

DATE                : 13/06/2025

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Nessus Agent versions prior to
                                      10.8.5.

=====================================================================
https://www.tenable.com/security/tns-2025-11
_____________________________________________________________________


[R1] Nessus Agent Version 10.8.5 Fixes Multiple Vulnerabilities
High
← View More Security Advisories
Synopsis

1. In Tenable Agent versions prior to 10.8.5 on a Windows host,
it was found that a non-administrative user could overwrite arbitrary
local system files with log content at SYSTEM privilege.  - CVE-2025-36631

2. In Tenable Agent versions prior to 10.8.5 on a Windows host, it was
found that a non-administrative user could execute code with SYSTEM
privilege. - CVE-2025-36632

3. In Tenable Agent versions prior to 10.8.5 on a Windows host, it was
found that a non-administrative user could arbitrarily delete local
system files with SYSTEM privilege, potentially leading to local
privilege escalation. - CVE-2025-36633


Solution

Tenable has released Agent 10.8.5 to address these issues. The
installation files can be obtained from the Tenable Downloads
Portal: https://www.tenable.com/downloads/nessus-agents

This page contains information regarding security vulnerabilities that
may impact Tenable's products. This may include issues specific to our
software, or due to the use of third-party libraries within our
software. Tenable strongly encourages users to ensure that they upgrade
or apply relevant patches in a timely manner.

Tenable takes product security very seriously. If you believe you have
found a vulnerability in one of our products, we ask that you please
work with us to quickly resolve it in order to protect customers.
Tenable believes in responding quickly to such reports, maintaining
communication with researchers, and providing a solution in short
order.

For more details on submitting vulnerability information, please see
our Vulnerability Reporting Guidelines page.

If you have questions or corrections about this advisory, please
email [email protected]


Risk Information
CVE ID: CVE-2025-36631
CVE-2025-36632
CVE-2025-36633
Tenable Advisory ID: TNS-2025-11
Risk Factor: High

Credit:
Rishad Sheikh - CVE-2025-36631
Julian Härig - CVE-2025-36633

CVSSv3 Base / Temporal Score:
8.4 / 7.6 (CVE-2025-36631)
7.8 / 7.0 (CVE-2025-36632)
8.8 / 7.9 (CVE-2025-36633)
CVSSv3 Vector:
AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H/E:P/RL:O/RC:C (CVE-2025-36631)
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C (CVE-2025-36632)
AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C (CVE-2025-36633)


Affected Products

Nessus Agent 10.8.4 and earlier

Disclosure Timeline
2025-05-10 - Report received by Tenable (CVE-2025-36631)
2025-05-28 - Report confirmed as valid
2025-05-28 - CVE ID requested / CVSS scoring calculated
2025-06-12 - Nessus Agent 10.8.5 released
2025-06-03 - Report received by Tenable (CVE-2025-36633)
2025-06-07 - Report confirmed as valid
2025-06-07 - CVE ID requested / CVSS scoring calculated
2025-06-12 - Nessus Agent 10.8.5 released

Advisory Timeline
2025-06-12 - [R1] Initial Release


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================