exploitDog

GHSA-9cwm-pw9v-q42q

Опубликовано: 23 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

In Tenable Network Monitor versions prior to 6.5.1 on a Windows host, it was found that a non-administrative user could stage files in a local directory to run arbitrary code with SYSTEM privileges, potentially leading to local privilege escalation.

In Tenable Network Monitor versions prior to 6.5.1 on a Windows host, it was found that a non-administrative user could stage files in a local directory to run arbitrary code with SYSTEM privileges, potentially leading to local privilege escalation.

Ссылки

EPSS

Процентиль: 3%

0.00015

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2025-24917

CVSS3: 7.8

nvd

9 месяцев назад

In Tenable Network Monitor versions prior to 6.5.1 on a Windows host, it was found that a non-administrative user could stage files in a local directory to run arbitrary code with SYSTEM privileges, potentially leading to local privilege escalation.

BDU:2025-11614

CVSS3: 7.8

fstec

около 1 года назад

Уязвимость программного средства контроля защищенности Tenable Network Monitor, связанная с ошибками разграничения доступа, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 3%

0.00015

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-284