{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T12:28:47.770","vulnerabilities":[{"cve":{"id":"CVE-2021-20077","sourceIdentifier":"vulnreport@tenable.com","published":"2021-03-19T19:15:13.497","lastModified":"2024-11-21T05:45:53.020","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Nessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role security token on the local host during initial linking of the Nessus Agent when installed on an Amazon EC2 instance. This could allow a privileged attacker to obtain the token."},{"lang":"es","value":"Se encontró que las versiones 7.2.0 a 8.2.2 del Agente Nessus capturan inadvertidamente el token de seguridad del rol IAM en el host local durante la vinculación inicial del Agente Nessus cuando se instala en una instancia de Amazon EC2. Esto podría permitir a un atacante privilegiado obtener el token"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:C/I:C/A:C","baseScore":7.2,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":3.9,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tenable:nessus_agent:*:*:*:*:*:*:*:*","versionStartIncluding":"7.2.0","versionEndExcluding":"8.2.3","matchCriteriaId":"1F349161-FB60-4003-B328-6FD49D226195"}]}]}],"references":[{"url":"https://www.tenable.com/security/tns-2021-04-0","source":"vulnreport@tenable.com","tags":["Patch","Vendor Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-04-0","source":"vulnreport@tenable.com","tags":["Patch","Vendor Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-07","source":"vulnreport@tenable.com","tags":["Not Applicable","Vendor Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-04-0","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-04-0","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-07","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Not Applicable","Vendor Advisory"]}]}}]}