cbcvebase.
CVE-2023-6062
published 2023-11-20

CVE-2023-6062: An arbitrary file write vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could alter Nessus…

PriorityP335medium6.5CVSS 3.1
AVNACLPRHUINSUCNIHAH
EPSS
1.03%
59.5th percentile
An arbitrary file write vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could alter Nessus Rules variables to overwrite arbitrary files on the remote host, which could lead to a denial of service condition.

Affected

3 ranges
VendorProductVersion rangeFixed in
tenablenessus< 10.6.210.6.2
tenablenessus< 10.5.710.5.7
tenablenessus>= 10.6.0 < 10.6.310.6.3

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.