Pass-back Vulnerability in Nessus: Unauthorized Access to Stored SMTP Credentials

Pass-back Vulnerability in Nessus: Unauthorized Access to Stored SMTP Credentials

CVE-2023-3251 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

A pass-back vulnerability exists where an authenticated, remote attacker with administrator privileges could uncover stored SMTP credentials within the Nessus application.This issue affects Nessus: before 10.6.0.

Learn more about our Web Application Penetration Testing UK.