Lucene search

CVE-2018-1155

🗓️ 02 Aug 2018 19:00:29Reported by tenableType

In SecurityCenter versions prior to 5.7.0, an XSS issue allows an attacker to inject JavaScript code into image filename parameters. Implementing updated input validation techniques resolves this issue

Reporter	Title	Published	Views	Family All 4
Prion	Cross site scripting	2 Aug 201819:29	–	prion
Cvelist	CVE-2018-1155	2 Aug 201819:00	–	cvelist
NVD	CVE-2018-1155	2 Aug 201819:29	–	nvd
Tenable Nessus	Tenable SecurityCenter < 5.7.0 Multiple Vulnerabilites (TNS-2018-11)	16 Aug 201800:00	–	nessus

Nvd

Node

tenable securitycenterRange<5.7.0

[
  {
    "product": "SecurityCenter",
    "vendor": "Tenable",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to 5.7.0"
      }
    ]
  }
]

Source	Link
tenable	www.tenable.com/security/tns-2018-11
securitytracker	www.securitytracker.com/id/1041431

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Aug 2018 19:29Current

5.3Medium risk

Vulners AI Score5.3

CVSS23.5

CVSS35.4

EPSS0.00048

CWE-79