CVE-2022-32973

3 documents3 sources
Severity
8.8HIGH
EPSS
0.5%
top 33.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Tenable Nessus
Timeline
PublishedJun 21
Latest updateJun 22

Description

An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

NVDtenable/nessus< 10.2.0
CVEListV5nessusNessus 10.1.X and earlier

🔴Vulnerability Details

2
GHSA
GHSA-c9hm-78qq-78cf: An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges2022-06-22
CVEList
CVE-2022-32973: An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges2022-06-21
CVE-2022-32973 (HIGH CVSS 8.8) | An authenticated attacker could cre | cvebase.io