Netstat Active Connections

info Nessus Plugin ID 58651
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.


Active connections are enumerated via the 'netstat' command.


This plugin runs 'netstat' on the remote machine to enumerate all active 'ESTABLISHED' or 'LISTENING' tcp/udp connections.

Note: The output for this plugin can be very long, and is not shown by default. To display it, enable verbose reporting in scan settings.

Plugin Details

Severity: Info

ID: 58651

File Name: netstat_active_connections.nasl

Version: 1.7

Type: local

Agent: windows, macosx, unix

Family: Misc.

Published: 4/10/2012

Updated: 6/29/2021

Dependencies: netstat_portscan.nasl, wmi_netstat.nbin

Vulnerability Information