Detections
Analytics

VMWare Aria Operations for Networks Authentication Bypass (CVE-2023-34039) (Direct Check)

critical Nessus Plugin ID 183238

Language:

Version 1.48

Nov 12, 2024, 8:29 PM

  • Logic Changes (Adding installs report)

Plugin Feed: 202411122029

Version 1.47

Nov 6, 2024, 2:41 PM

  • Detection (adding support for Forescout CounterACT)

Plugin Feed: 202411061441

Version 1.46

Oct 10, 2024, 11:57 PM

  • New

Plugin Feed: 202410102357

Version 1.45

Oct 10, 2024, 4:58 AM

  • Detection (Change dir to $HOME before find commands to handle weird find behavior with escalation.)

Plugin Feed: 202410100458

Version 1.43

Sep 11, 2024, 5:35 PM

  • New (Detects QUIC servers running on the target. Implement a NASL QUIC library to support detection of HTTP/3 and possibly more)

Plugin Feed: 202409111735

Version 1.42

Sep 3, 2024, 11:47 PM

  • Logic Changes (additional data collection for runtime scanning. fixed logic bug causing potential false negatives. fixed logic bug causing potential false positives. fixed logic bug with potential to break cyberark logins)

Plugin Feed: 202409032347

Version 1.40

Sep 3, 2024, 5:26 PM

  • Detection (Support for Aruba CPPM SSH based local checks)

Plugin Feed: 202409031726

Version 1.39

Aug 14, 2024, 8:33 PM

  • Logic Changes (Endianness fix in Kerberos authentication for SCAP scanning)

Plugin Feed: 202408142033

Version 1.38

Aug 8, 2024, 4:43 PM

  • Logic Changes (Support OpenSSH private key formats for authentication.)

Plugin Feed: 202408081643

Version 1.35

Jul 24, 2024, 6:31 PM

  • Logic Changes (Modernize SSH usage to optimize behavior on Nessus Agents.. adding AI family)

Plugin Feed: 202407241831

Version 1.33

Jul 17, 2024, 11:02 PM

  • Logic Changes

Plugin Feed: 202407172302

Version 1.32

Jul 6, 2024, 12:22 AM

  • Detection (Changes to support Juniper Session Smart Router)

Plugin Feed: 202407060022

Version 1.31

Jul 5, 2024, 9:04 PM

  • Detection (Adding detection of Juniper SSR devices)

Plugin Feed: 202407052104

Version 1.30

Jun 27, 2024, 9:09 PM

  • New (Deploy nessus_utils binaries on the Nessus Agent)

Plugin Feed: 202406272109

Version 1.28

Jun 21, 2024, 6:31 PM

  • Detection (updated detection for SonicOS devices)

Plugin Feed: 202406211831

Version 1.27

Jun 21, 2024, 2:16 PM

  • Logic Changes

Plugin Feed: 202406211416

Version 1.26

May 20, 2024, 10:13 AM

  • Logic Changes

Plugin Feed: 202405201013

Version 1.23

Mar 19, 2024, 6:40 PM

  • Logic Changes (Improving logging to reduce disk space usage)

Plugin Feed: 202403191840

Version 1.18

Feb 9, 2024, 11:22 AM

  • New

Plugin Feed: 202402091122

Version 1.17

Jan 16, 2024, 8:55 PM

  • Logic Changes (Improving debug logging)

Plugin Feed: 202401162055

Version 1.15

Jan 16, 2024, 5:39 PM

  • Detection (Add carrier grade NAT IPs to the IPv4 private address ranges.. Support privacy mode DCOM over Kerberos)
  • Logic Changes (Improving debug logging)

Plugin Feed: 202401161739

Version 1.13

Jan 15, 2024, 12:45 PM

  • Detection

Plugin Feed: 202401151245

Version 1.10

Dec 6, 2023, 12:08 AM

  • Logic Changes (Fixes bug in special case shell handling logic.)

Plugin Feed: 202312060008

Version 1.9

Dec 5, 2023, 9:49 PM

  • Logic Changes (Fixes bug in special case shell handling logic.)

Plugin Feed: 202312052149

Version 1.8

Nov 28, 2023, 11:17 AM

  • Detection (Fixing detection of Cisco Firepower devices)

Plugin Feed: 202311281117

Version 1.7

Nov 27, 2023, 6:11 PM

  • Detection (No longer fall back to the legacy SSH library. Only use the old library explicitly.)

Plugin Feed: 202311271811

Version 1.6

Nov 14, 2023, 4:21 PM

  • Detection (Support SHA2 based encryption for Kerberos)

Plugin Feed: 202311141621

Version 1.6

Nov 27, 2023, 4:16 PM

  • Detection (No longer fall back to the legacy SSH library. Only use the old library explicitly.)

Plugin Feed: 202311271616

Version 1.5

Oct 30, 2023, 1:08 PM

  • Detection (Fixed detection of JUNOS)

Plugin Feed: 202310301308

Version 1.4

Oct 25, 2023, 5:17 PM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C")
  • Detection (Handle SSH exec hang and pagination ctrl codes for PanOS)
  • Exploit attributes ("Exploit framework metasploit" set to "True")

Plugin Feed: 202310251717

Version 1.1

Oct 18, 2023, 7:26 PM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • CVSSv3 score source (set to "CVE-2023-34039")
  • Exploit attributes ("Exploit available" set to "True". "Exploitability ease" set to "Exploits are available")

Plugin Feed: 202310181926

Version 1.0

Oct 17, 2023, 9:33 PM

  • New

Plugin Feed: 202310172133

* Changelogs are generally available for changes made after Nov 1, 2022