CVE-2020-5793

Published: 05/11/2020 Updated: 16/11/2020

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

A vulnerability in Nessus versions 8.9.0 up to and including 8.12.0 for Windows & Nessus Agent 8.0.0 and 8.1.0 for Windows could allow an authenticated local malicious user to copy user-supplied files to a specially constructed path in a specifically named user directory. An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory. The attacker needs valid credentials on the Windows system to exploit this vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tenable nessus
tenable nessus agent 8.0.0
tenable nessus agent 8.1.0

A vulnerability in Nessus Agent 800 and 810 for Windows could allow an authenticated local attacker to execute arbitrary code by copying user-supplied files to a specially constructed path in a specifically named user directory The attacker needs valid credentials on the Windows system to exploit this vulnerability ...

A vulnerability in Nessus versions 890 through 8120 for Windows could allow an authenticated local attacker to copy user-supplied files to a specially constructed path in a specifically named user directory An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory The attacker needs v ...

NVD-CWE-noinfo https://www.tenable.com/security/tns-2020-07 https://www.tenable.com/security/tns-2020-08 https://nvd.nist.gov https://www.tenable.com/security/tns-2020-07

CVE-2020-5793

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect