Privilege Escalation
CVE-2023-5622

7.1HIGH

Key Information:

Vendor: Tenable
Status: Nessus Network Monitor
Vendor: CVE Published:; 26 October 2023

What is CVE-2023-5622?

A vulnerability in Nessus Network Monitor on Windows allows a low privileged user to replace a specially crafted file, potentially escalating their privileges to NT AUTHORITY\SYSTEM. This flaw could create serious security risks if exploited, providing unauthorized users with elevated control over Windows hosts, which may lead to further compromise of the system.

Affected Version(s)

Nessus Network Monitor Windows 0

References

https://www.tenable.com/security/tns-2023-34

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 26, 2023
Vulnerability Reserved
Oct 17, 2023

Tenable

What is CVE-2023-5622?

Affected Version(s)

References

CVSS V3.1

Timeline