Published: 05/11/2020 Updated: 16/11/2020

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

A vulnerability in Nessus versions 8.9.0 up to and including 8.12.0 for Windows & Nessus Agent 8.0.0 and 8.1.0 for Windows could allow an authenticated local malicious user to copy user-supplied files to a specially constructed path in a specifically named user directory. An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory. The attacker needs valid credentials on the Windows system to exploit this vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tenable nessus
tenable nessus_agent 8.0.0
tenable nessus_agent 8.1.0

A vulnerability in Nessus Agent 800 and 810 for Windows could allow an authenticated local attacker to execute arbitrary code by copying user-supplied files to a specially constructed path in a specifically named user directory The attacker needs valid credentials on the Windows system to exploit this vulnerability ...

A vulnerability in Nessus versions 890 through 8120 for Windows could allow an authenticated local attacker to copy user-supplied files to a specially constructed path in a specifically named user directory An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory The attacker needs v ...

NVD-CWE-noinfo https://www.tenable.com/security/tns-2020-07 https://www.tenable.com/security/tns-2020-08 https://nvd.nist.gov https://www.tenable.com/security/tns-2020-07

CVE-2020-5793

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect