Lucene search
HistoryOct 26, 2023 - 5:15 p.m.
CVE-2023-5622
nessus
network monitor
privilege escalation
windows
nt authority\system
cve-2023-5622
file replacement
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.1%
Under certain conditions, Nessus Network Monitor could allow a low privileged user to escalate privileges to NT AUTHORITY\SYSTEM on Windows hosts by replacing a specially crafted file.
Affected configurations
Node
tenablenessus_network_monitorRange<6.3.0windows
References
Related
zdi
zdi
prion
prion
Design/Logic Flaw
2023-10-26 17:15:00
cve
cve
CVE-2023-5622
2023-10-26 17:15:09
vulnrichment
vulnrichment
CVE-2023-5622 Privilege Escalation
2023-10-26 16:18:16
cvelist
cvelist
CVE-2023-5622 Privilege Escalation
2023-10-26 16:18:16
tenable
tenable
[R1] Nessus Network Monitor 6.3.0 Fixes Multiple Vulnerabilities
2023-10-25 19:33:38
nessus
nessus
Nessus Network Monitor < 6.3.0 Multiple Vulnerabilities (TNS-2023-34)
2023-10-26 00:00:00
openvas
openvas
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.1%
Related for NVD:CVE-2023-5622