{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-10T12:29:10.464","vulnerabilities":[{"cve":{"id":"CVE-2025-24915","sourceIdentifier":"vulnreport@tenable.com","published":"2025-03-21T15:15:42.020","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions prior to 10.8.3 did not enforce secure permissions for sub-directories.  This could allow for local privilege escalation if users had not secured the directories in the non-default installation location."},{"lang":"es","value":"Al instalar Nessus Agent en una ubicación no predeterminada en un host Windows, las versiones de Nessus Agent anteriores a la 10.8.3 no aplicaban permisos seguros a los subdirectorios. Esto podía provocar una escalada de privilegios local si los usuarios no habían protegido los directorios en la ubicación de instalación no predeterminada."}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-276"}]}],"references":[{"url":"https://www.tenable.com/security/tns-2025-02","source":"vulnreport@tenable.com"}]}}]}