95 matches found
Tenable Security Center
This module collects credentials and setup information from Tenable Security Center. root or TNS user permissions are required. We don't utilize SC's builtin backup functionality as that requires SC to be shut down. The module works in 2 phases: Phase 1: gather all passwords which can be decrypte...
Tenable Security Center Multiple Vulnerabilities (TNS-2026-10)
According to its self-reported version, the Tenable Security Center running on the remote host is 6.5.0 through 6.8.0 and missing security patch SC-202604.1. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2026-10 advisory. - Missing validation of multibyte charact...
[R2] Stand-alone Security Patch Available for Tenable Security Center Versions 6.5.1, 6.6.0, 6.7.2 and 6.8.0: SC202604.1
R2 Stand-alone Security Patch Available for Tenable Security Center Versions 6.5.1, 6.6.0, 6.7.2 and 6.8.0: SC202604.1 Aaron Roy Tue, 04/07/2026 - 11:35 Security Center leverages third-party software to help provide underlying functionality. A third-party component PostgreSQL was found to contain...
Tenable Security Center 安全漏洞
Tenable Security Center is a security center provided by the American company Tenable. There are security vulnerabilities in Tenable Security Center. These vulnerabilities stem from improper access control, which may allow authenticated users to access areas that are beyond their authorized scope...
Tenable Security Center 安全漏洞
Tenable Security Center is a security center provided by the American company Tenable. There is a security vulnerability present in Tenable Security Center, which stems from an insecure direct object reference in the owner parameter, potentially leading to privilege escalation...
CVE-2026-2630
A Command Injection vulnerability exists where an authenticated, remote attacker could execute arbitrary code on the underlying server where Tenable Security Center is hosted...
CVE-2026-2630
A Command Injection vulnerability exists where an authenticated, remote attacker could execute arbitrary code on the underlying server where Tenable Security Center is hosted...
CVE-2026-2630 [R1] Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2
A Command Injection vulnerability exists where an authenticated, remote attacker could execute arbitrary code on the underlying server where Tenable Security Center is hosted...
CVE-2026-2630
CVE-2026-2630 is a command‑injection vulnerability affecting the Tenable Security Center. An authenticated, remote attacker could execute arbitrary code on the underlying server hosting Security Center. The CVSS metrics indicate network access, low attack complexity, and that privileges are requi...
CVE-2026-2630 [R1] Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2
A Command Injection vulnerability exists where an authenticated, remote attacker could execute arbitrary code on the underlying server where Tenable Security Center is hosted...
[R1] Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2
R1 Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2 Arnie Cabral Tue, 02/17/2026 - 08:32 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components...
[R2] Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2
R2 Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2 Arnie Cabral Tue, 02/17/2026 - 08:32 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components...
PT-2026-20347
Name of the Vulnerable Software and Affected Versions Tenable Security Center affected versions not specified Description A Command Injection issue exists that allows an authenticated, remote attacker to execute arbitrary code on the server hosting Tenable Security Center. Successful exploitation...
Tenable Security Center 安全漏洞
Tenable Security Center is a security center provided by the American company Tenable. There are security vulnerabilities present in Tenable Security Center, and these vulnerabilities stem from remote attacks by authentication attackers, which allow them to execute arbitrary code...
Tenable Security Center < 6.7.0 (TNS-2025-21)
According to its self-reported version, the Tenable Security Center running on the remote host is prior to 6.7.0. It is, therefore, affected by a vulnerability as referenced in the TNS-2025-21 advisory. - In Tenable Security Center versions prior to 6.7.0, an improper access control vulnerability...
CVE-2025-36636
In Tenable Security Center versions prior to 6.7.0, an improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope...
EUVD-2025-33302
In Tenable Security Center versions prior to 6.7.0, an improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope...
CVE-2025-36636 Improper Access Control
In Tenable Security Center versions prior to 6.7.0, an improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope...
CVE-2025-36636
CVE-2025-36636 affects Tenable Security Center before version 6.7.0. The issue is an improper access control that allows an authenticated user to access areas outside their authorized scope, with impact described as none to confidentiality, and low integrity impact (CVSS 3.1: 4.3). Remediation is...
CVE-2025-36636 Improper Access Control
In Tenable Security Center versions prior to 6.7.0, an improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope...