Lucene search
HistoryOct 26, 2023 - 5:15 p.m.
CVE-2023-5622
nessus
network monitor
privilege escalation
windows
nt authority\system
cve-2023-5622
nvd
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.1%
Under certain conditions, Nessus Network Monitor could allow a low privileged user to escalate privileges to NT AUTHORITY\SYSTEM on Windows hosts by replacing a specially crafted file.
Affected configurations
Node
tenablenessus_network_monitorRange<6.3.0windows
| CPE | Name | Operator | Version |
|---|---|---|---|
| tenable:nessus_network_monitor | tenable nessus network monitor | lt | 6.3.0 |
CNA Affected
[
{
"defaultStatus": "affected",
"platforms": [
"Windows"
],
"product": "Nessus Network Monitor",
"vendor": "Tenable",
"versions": [
{
"lessThan": "6.3.0",
"status": "affected",
"version": "0",
"versionType": "6.3.0"
}
]
}
]References
Related
zdi
zdi
prion
prion
Design/Logic Flaw
2023-10-26 17:15:00
nvd
nvd
CVE-2023-5622
2023-10-26 17:15:09
vulnrichment
vulnrichment
CVE-2023-5622 Privilege Escalation
2023-10-26 16:18:16
cvelist
cvelist
CVE-2023-5622 Privilege Escalation
2023-10-26 16:18:16
tenable
tenable
[R1] Nessus Network Monitor 6.3.0 Fixes Multiple Vulnerabilities
2023-10-25 19:33:38
openvas
openvas
nessus
nessus
Nessus Network Monitor < 6.3.0 Multiple Vulnerabilities (TNS-2023-34)
2023-10-26 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.1%
Related for CVE-2023-5622