Tenable has released patches for three high-severity vulnerabilities in Nessus Agent for Windows that could be exploited to perform file operations and execute code with elevated privileges.
Tracked as CVE-2025-36631 (CVSS score of 8.4), the first bug could allow users logged in to non-administrative accounts to overwrite arbitrary local system files with log content, with System privileges.
The second flaw, CVE-2025-36632 (CVSS score of 7.8), allows non-administrative users to execute arbitrary code with System privileges.
Finally, CVE-2025-36633 (CVSS score of 8.8) allows users in a non-administrative position to arbitrarily delete local system files, also with System privileges.
Successful exploitation of the issue could allow users to escalate their privileges on the affected machine, Tenable says.
The three vulnerabilities impact Nessus Agent versions 10.8.4 and earlier and were resolved with the release of version 10.8.5, which is available from Tenable’s download portal.
The company makes no mention of any of these vulnerabilities being exploited in the wild, but users are advised to update their deployments as soon as possible.
Tenable Nessus agents are lightweight programs installed locally to collect information from assets. They can be used to scan for security defects, compliance issues, and other types of information.
In early January, Tenable disabled agent versions 10.8.0 and 10.8.1, after discovering that they were going offline following a differential plugin update. The company told SecurityWeek at the time that it was not a security incident and that no customer was adversely impacted.
Related: Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption
Related: Palo Alto Networks Patches Privilege Escalation Vulnerabilities
Related: Fortinet, Ivanti Patch High-Severity Vulnerabilities
Related: Cisco Patches Critical ISE Vulnerability With Public PoC
