- Description
- Vulnerability in Tenable Tenable.Io, Tenable Nessus, Tenable Security Center.This issue affects Tenable.Io: before Plugin Feed ID #202306261202 ; Nessus: before Plugin Feed ID #202306261202 ; Security Center: before Plugin Feed ID #202306261202 . This vulnerability could allow a malicious actor with sufficient permissions on a scan target to place a binary in a specific filesystem location, and abuse the impacted plugin in order to escalate privileges.
- Source
- vulnreport@tenable.com
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- nvd@nist.gov
- NVD-CWE-noinfo
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-427
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tenable:nessus:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3EEA2071-B520-44B1-9320-198E3D264721"
},
{
"criteria": "cpe:2.3:a:tenable:securitycenter:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "772F9C28-5F96-4962-B2A4-2045B3C82008"
},
{
"criteria": "cpe:2.3:a:tenable:tenable.io:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C740060-086C-4893-BAF2-6BB423252956"
}
],
"operator": "OR"
}
]
}
]