{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-6178","assignerOrgId":"5ac1ecc2-367a-4d16-a0b2-35d495ddd0be","state":"PUBLISHED","assignerShortName":"tenable","dateReserved":"2023-11-16T16:44:00.280Z","datePublished":"2023-11-20T20:35:55.499Z","dateUpdated":"2024-08-02T08:21:17.809Z"},"containers":{"cna":{"affected":[{"defaultStatus":"affected","product":"Nessus Agent","vendor":"Tenable","versions":[{"lessThan":"10.4.3","status":"affected","version":"0","versionType":"10.4.4"}]}],"datePublic":"2023-11-16T19:00:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"\n\nAn arbitrary file write vulnerability exists where an authenticated attacker with privileges on the managing application could alter Nessus Rules variables to overwrite arbitrary files on the remote host, which could lead to a denial of service condition. \n\n"}],"value":"\nAn arbitrary file write vulnerability exists where an authenticated attacker with privileges on the managing application could alter Nessus Rules variables to overwrite arbitrary files on the remote host, which could lead to a denial of service condition. \n\n"}],"impacts":[{"capecId":"CAPEC-23","descriptions":[{"lang":"en","value":"CAPEC-23 File Content Injection"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":6.8,"baseSeverity":"MEDIUM","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"HIGH","scope":"CHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"providerMetadata":{"orgId":"5ac1ecc2-367a-4d16-a0b2-35d495ddd0be","shortName":"tenable","dateUpdated":"2023-11-20T20:35:55.499Z"},"references":[{"url":"https://www.tenable.com/security/tns-2023-41"}],"source":{"advisory":"TNS-2023-41","discovery":"EXTERNAL"},"x_generator":{"engine":"Vulnogram 0.1.0-dev"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T08:21:17.809Z"},"title":"CVE Program Container","references":[{"url":"https://www.tenable.com/security/tns-2023-41","tags":["x_transferred"]}]}]}}