Junction File Manipulation

Description

This vulnerability allows an attacker to create a junction, enabling the deletion of arbitrary files with SYSTEM privileges. As a result, this condition potentially facilitates arbitrary code execution, whereby an attacker may exploit the vulnerability to execute malicious code with elevated SYSTEM privileges.

Affected Products

Vendor	Product	Versions
tenable	tenable nessus, tenable nessus agent	Nessus Agent, Nessus

References

Related News (1 articles)

Tier C

VulDB2h ago

CVE-2026-33694 | Tenable Nessus/Nessus Agent link following

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

CWECWE-59

PublishedApr 23, 2026

Last enriched2h agov2

Trending Score36

Source articles2

Independent1

Info Completeness7/14

Missing: cvss, epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (4)

Version History

Last enriched 2h ago

v2Tier C2h ago

Updated severity to CRITICAL and corrected exploit availability to false.

severity

via VulDB

v14h ago

Initial creation