Vulnerability Details CVE-2020-5793
A vulnerability in Nessus versions 8.9.0 through 8.12.0 for Windows & Nessus Agent 8.0.0 and 8.1.0 for Windows could allow an authenticated local attacker to copy user-supplied files to a specially constructed path in a specifically named user directory. An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory. The attacker needs valid credentials on the Windows system to exploit this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.8%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
Products affected by CVE-2020-5793
-
cpe:2.3:a:tenable:nessus:8.10.0
-
cpe:2.3:a:tenable:nessus:8.10.1
-
cpe:2.3:a:tenable:nessus:8.11.0
-
cpe:2.3:a:tenable:nessus:8.11.1
-
cpe:2.3:a:tenable:nessus:8.12.0
-
cpe:2.3:a:tenable:nessus:8.9.0
-
cpe:2.3:a:tenable:nessus:8.9.1
-
cpe:2.3:a:tenable:nessus_agent:8.0.0
-
cpe:2.3:a:tenable:nessus_agent:8.1.0
-
cpe:2.3:o:microsoft:windows:-