logo
DATABASE RESOURCES PRICING ABOUT US

Tenable Log Correlation Engine (LCE) < 6.0.9 (TNS-2021-10)

Description

The version of Tenable Log Correlation Engine (LCE) installed on the remote host is prior to 6.0.9. It is, therefore, affected by multiple vulnerabilities: - Multiple denial of service vulnerabilities in the included OpenSSL component. (CVE-2019-1551, CVE-2020-1967, CVE-2020-1971, CVE-2021-3449, CVE-2021-23840) - Multiple cross site scripting vulnerabilities in the included JQuery component. (CVE-2020-11022, CVE-2020-11023) Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.


Related