CVE-2023-6062

CWE-787Out-of-bounds WriteCWE-7724 documents4 sources
Severity
6.5MEDIUM
EPSS
0.2%
top 56.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Tenable Nessus
Timeline
PublishedNov 20
Latest updateSep 15

Description

An arbitrary file write vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could alter Nessus Rules variables to overwrite arbitrary files on the remote host, which could lead to a denial of service condition.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:HExploitability: 2.3 | Impact: 4.0

Affected Packages2 packages

CVEListV5tenable/nessus< 10.6.2
NVDtenable/nessus10.6.010.6.3+1

🔴Vulnerability Details

2
GHSA
GHSA-f9c7-v94m-vp2c: An arbitrary file write vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could alt2023-11-20
CVEList
Arbitrary File Write2023-11-20

📋Vendor Advisories

1
Red Hat
kernel: coresight: Fix memory leak in acpi_buffer->pointer2025-09-15
CVE-2023-6062 (MEDIUM CVSS 6.5) | An arbitrary file write vulnerabili | cvebase.io