3 matches found
CVE-2020-5737
Stored XSS in Tenable.Sc before 5.14.0 could allow an authenticated remote attacker to craft a request to execute arbitrary script code in a user's browser session. Updated input validation techniques have been implemented to correct this issue...
Tenable SecurityCenter < 5.14.0 Multiple Vulnerabilities (TNS-2020-02)
According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is earlier than 5.14.0. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues nor the stand-alone patch but has instead relied only on the...
CVE-2020-5737
Tenable.Sc (before 5.14.0) is affected by a Stored XSS vulnerability (CVE-2020-5737). An authenticated remote attacker could craft a request to trigger script execution in a user’s browser session. Root cause involves inadequate input validation in the web application prior to 5.14.0. Remediation...