CVE-2023-6062

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 20, 2023

Updated: Nov 29, 2023

CWE ID 787

Summary

CVE-2023-6062 is a critical vulnerability affecting the Nessus application. This arbitrary file write issue allows an authenticated, remote attacker with administrator privileges to manipulate Nessus Rules variables and overwrite arbitrary files on the targeted system. Successful exploitation of this vulnerability could result in denial of service conditions. Organizations using Nessus are urged to apply the necessary patches or updates to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Tenable Nessus

Affected Vendors

Tenable Network Security, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tV2XiT
https://www.cve.org/CVERecord?id=CVE-2023-6062
https://nvd.nist.gov/vuln/detail/CVE-2023-6062

Back to Vulnerability Database