CVE-2017-8051 | Tenable Appliance up to 4.4.0 Web UI simpleupload.py tns_appliance_session_user command injection (EDB-41892 / ID 11802)
A vulnerability classified as critical was found in Tenable Appliance up to 4.4.0. Affected by this vulnerability is an unknown functionality of the file simpleupload.py of the component Web UI. The manipulation of the argument tns_appliance_session_user leads to command injection.
This vulnerability is known as CVE-2017-8051. The attack can be launched remotely. Furthermore, there is an exploit available. Due to its background and reception, this vulnerability has an historic impact.
It is recommended to upgrade the affected component.