CVE-2023-3252

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 29, 2023
Updated: Sep 1, 2023

Summary

CVE-2023-3252 is an arbitrary file write vulnerability that allows authenticated, remote attackers with administrator privileges to alter logging variables and overwrite arbitrary files on the remote host with log data. This issue can result in a denial of service condition. The vulnerability enables an attacker to manipulate log files, potentially disrupting system functionality and data integrity. Authentication is required to exploit this vulnerability, making it a significant concern for organizations with administrative access controls in place.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Tenable Nessus

Affected Vendors

  • Tenable Network Security, Inc.