95 matches found
CVE-2024-12174
An Improper Certificate Validation vulnerability exists in Tenable Security Center where an authenticated, privileged attacker could intercept email messages sent from Security Center via a rogue SMTP server...
CVE-2024-12174
CVE-2024-12174 affects Tenable Security Center and is caused by improper certificate validation when Security Center sends emails via an SMTP server. The underlying issue allows an authenticated, privileged attacker to intercept email messages sent from Security Center using a rogue SMTP server. ...
CVE-2024-12174
An Improper Certificate Validation vulnerability exists in Tenable Security Center where an authenticated, privileged attacker could intercept email messages sent from Security Center via a rogue SMTP server...
Tenable Security Center 安全漏洞
Tenable Security Center is a security center from Tenable USA. Tenable Security Center has a security vulnerability that originates from incorrect certificate validation. An authenticated, privileged attacker could use this vulnerability to intercept email sent from Security Center via a maliciou...
PT-2024-17470 · Tenable · Tenable Security Center
Name of the Vulnerable Software and Affected Versions: Tenable Security Center affected versions not specified Description: An Improper Certificate Validation issue exists, allowing an authenticated, privileged attacker to intercept email messages sent from Security Center via a rogue SMTP server...
GLSA-202412-07 : OpenJDK: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202412-07 OpenJDK: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in OpenJDK. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly...
Tenable Security Center < 6.5.0 Multiple Vulnerabilities (TNS-2024-19)
According to its self-reported version, the Tenable Security Center running on the remote host is prior to 6.5.0. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-19 advisory. - Security Center leverages third-party software to help provide underlying...
Tenable Security Center Multiple Vulnerabilities (TNS-2024-12)
According to its self-reported version, the Tenable Security Center running on the remote host is . It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-12 advisory. - Security Center leverages third-party software to help provide underlying functionality. One of t...
Tenable Security Center Multiple Vulnerabilities (TNS-2024-13)
According to its self-reported version, the Tenable Security Center running on the remote host is 6.2.1, 6.3.0 or 6.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-13 advisory. - Security Center leverages third-party software to help provide underlying...
[R1] Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202408.1
R1 Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202408.1 Arnie Cabral Tue, 08/13/2024 - 10:51 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components Apache, libcurl were...
[R1] Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202407.1
R1 Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202407.1 Arnie Cabral Tue, 07/09/2024 - 08:33 Security Center leverages third-party software to help provide underlying functionality. One of the third-party components PHP was found to contain...
CVE-2024-5759
An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges...
CVE-2024-5759
An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges...
CVE-2024-1891
A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML code into a web application scan result page...
CVE-2024-5759 Improper privilege management
An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges...
CVE-2024-5759
CVE-2024-5759 affects Tenable Security Center. It is an improper privilege management vulnerability where an authenticated, remote attacker could view unauthorized objects and initiate scans without the required privileges. The issue is addressed in Security Center 6.4.0 (upgrade to 6.4.0 or late...
CVE-2024-1891 Stored Cross Site Scripting
A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML code into a web application scan result page...
CVE-2024-1891 Stored Cross Site Scripting
A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML code into a web application scan result page...
CVE-2024-1891
The CVE-2024-1891 entry describes a stored cross-site scripting vulnerability in Tenable Security Center. A authenticated, remote attacker could inject HTML code into a web application scan result page due to inadequate input handling in the affected component/file. Relevant details show impact c...
PT-2024-18398 · Tenable · Tenable Security Center
Name of the Vulnerable Software and Affected Versions: Tenable Security Center affected versions not specified Description: A stored cross site scripting issue exists, allowing an authenticated, remote attacker to inject HTML code into a web application scan result page. Recommendations: At the...