CVE-2023-6062

EUVD-2023-58319
An arbitrary file write vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could alter Nessus Rules variables to overwrite arbitrary files on the remote host, which could lead to a denial of service condition.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
tenableCNA
6.8 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 43%
Affected Products (NVD)
VendorProductVersion
tenablenessus
𝑥
< 10.5.7
tenablenessus
10.6.0 ≤
𝑥
< 10.6.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.tenable.com/security/tns-2023-39
https://www.tenable.com/security/tns-2023-40
https://www.tenable.com/security/tns-2023-39
https://www.tenable.com/security/tns-2023-40