CVE-2023-6062

An arbitrary file write vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could alter Nessus Rules variables to overwrite arbitrary files on the remote host, which could lead to a denial of service condition.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
tenableCNA
6.8 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 43%
VendorProductVersion
tenablenessus
𝑥
< 10.5.7
tenablenessus
10.6.0 ≤
𝑥
< 10.6.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.tenable.com/security/tns-2023-39
https://www.tenable.com/security/tns-2023-40
https://www.tenable.com/security/tns-2023-39
https://www.tenable.com/security/tns-2023-40