Description
A SQL injection vulnerability in Nessus allows an attacker to craft a malicious scan result file that, when imported by a privileged user, injects malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data.
Published: 2026-06-25
Score: 1.6 Low
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The CVE describes a SQL injection vulnerability that exists when Nessus processes a scan result file imported by a privileged user. By crafting a file containing malicious SQL statements, an attacker can exploit the import routine and inject arbitrary queries into the scan results database. The injected statements may read or exfiltrate sensitive scan-result data, compromising confidentiality of stored findings.

Affected Systems

The vulnerability affects Tenable’s Nessus vulnerability scanner. Any installation of Nessus that allows privileged users to import scan result files via the web interface or other import mechanisms is susceptible. No specific product versions are listed, so all current and earlier releases that retain the same import functionality are potentially affected until a fix is applied.

Risk and Exploitability

The CVSS score of 1.6 indicates a low impact from a severity perspective, and the EPSS score is not available, suggesting limited known exploitation activity. Since the vulnerability requires a privileged user to upload a crafted file, the attack vector is limited and requires social engineering or compromise of legitimate scanner credentials. The vulnerability is not listed in CISA’s KEV catalog, so no publicly known exploits are present. Nonetheless, the risk exists especially in environments where scan result imports are routinely performed by admins who could be tricked.

Generated by OpenCVE AI on June 25, 2026 at 15:42 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Disable scan result file import functionality until patch is applied or enforce strict access control on the import feature.
  • Validate or sanitize imported scan result files to reject malicious SQL before processing.
  • Immediately apply the latest Nessus update that contains the patch for this vulnerability, or contact Tenable for an upgrade notice.

Generated by OpenCVE AI on June 25, 2026 at 15:42 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 25 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 25 Jun 2026 14:45:00 +0000

Type Values Removed Values Added
Description A SQL injection vulnerability in Nessus allows an attacker to craft a malicious scan result file that, when imported by a privileged user, injects malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data.
Title SQL Injection in Nessus via Malicious Scan Result File Import
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C'}

cvssV4_0

{'score': 1.6, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: tenable

Published:

Updated: 2026-06-25T15:49:55.857Z

Reserved: 2026-06-24T19:21:39.666Z

Link: CVE-2026-57588

cve-icon Vulnrichment

Updated: 2026-06-25T15:33:34.854Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T15:45:05Z

Weaknesses
  • CWE-89

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')