Content Injection vulnerability in Tenable Nessus prior to 8.5.0 may allow an authenticated, local attacker to exploit this vulnerability by convincing another targeted Nessus user to view a. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.
XSS
Nessus
NVD
CVSS 3.0
3.3
EPSS
1.0%
IBM Robotic Process Automation with Automation Anywhere 11 information disclosure could allow a local user to obtain e-mail contents from the client debug log file. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.
IBM
Information Disclosure
Robotic Process Automation With Automation Anywhere
NVD
CVSS 3.1
3.3
EPSS
0.3%