CVE-2023-2005

Summary

Vulnerability in Tenable Tenable.Io, Tenable Nessus, Tenable Security Center.This issue affects Tenable.Io: before Plugin Feed ID #202306261202 ; Nessus: before Plugin Feed ID #202306261202 ; Security Center: before Plugin Feed ID #202306261202 .

This vulnerability could allow a malicious actor with sufficient permissions on a scan target to place a binary in a specific filesystem location, and abuse the impacted plugin in order to escalate privileges.

Affected Software

VendorProductVersion RangeStatus
TenableTenable.io0 < Plugin Feed ID #202306261202affected
TenableNessus0 < Plugin Feed ID #202306261202affected
TenableSecurity Center0 < Plugin Feed ID #202306261202affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References