To perform a vulnerability scan on my local PC using Nessus Essentials and identify any existing critical or high-risk issues.
- Nessus Essentials v10.8.4
- Scan Target: 127.0.0.1 (localhost)
- Total Vulnerabilities: 14
- Critical: 2
- High: 4
- Medium: 8
| CVSS Score | Risk Level | Vulnerability | Suggested Fix |
|---|---|---|---|
| 9.8 | Critical | SMBv1 Remote Code Execution Vulnerability | Disable SMBv1 or update to latest patches |
| 9.3 | Critical | Remote Desktop Weak Encryption | Enforce stronger encryption (TLS 1.2+) |
| 8.2 | High | OpenSSH Weak Ciphers Enabled | Update OpenSSH and disable weak ciphers |
| 7.5 | High | Apache HTTP Server CVE-2023-25690 | Update Apache to a patched version |
- How vulnerability scanners work using CVE and CVSS scoring
- Importance of patching outdated or misconfigured services
- How even unused services like SMBv1 can introduce risk