Lucene search
+L

95 matches found

Vulnrichment
Vulnrichment
added 2024/12/09 9:38 p.m.9 views

CVE-2024-12174

An Improper Certificate Validation vulnerability exists in Tenable Security Center where an authenticated, privileged attacker could intercept email messages sent from Security Center via a rogue SMTP server...

2.7CVSS6.9AI score0.00177EPSS
Exploits0References1
CVE
CVE
added 2024/12/09 9:38 p.m.92 views

CVE-2024-12174

CVE-2024-12174 affects Tenable Security Center and is caused by improper certificate validation when Security Center sends emails via an SMTP server. The underlying issue allows an authenticated, privileged attacker to intercept email messages sent from Security Center using a rogue SMTP server. ...

2.7CVSS3.6AI score0.00177EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/09 9:38 p.m.47 views

CVE-2024-12174

An Improper Certificate Validation vulnerability exists in Tenable Security Center where an authenticated, privileged attacker could intercept email messages sent from Security Center via a rogue SMTP server...

2.7CVSS0.00177EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.3 views

Tenable Security Center 安全漏洞

Tenable Security Center is a security center from Tenable USA. Tenable Security Center has a security vulnerability that originates from incorrect certificate validation. An authenticated, privileged attacker could use this vulnerability to intercept email sent from Security Center via a maliciou...

2.7CVSS4.5AI score0.00177EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.4 views

PT-2024-17470 · Tenable · Tenable Security Center

Name of the Vulnerable Software and Affected Versions: Tenable Security Center affected versions not specified Description: An Improper Certificate Validation issue exists, allowing an authenticated, privileged attacker to intercept email messages sent from Security Center via a rogue SMTP server...

2.7CVSS6.4AI score0.00177EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/12/09 12:0 a.m.7 views

GLSA-202412-07 : OpenJDK: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202412-07 OpenJDK: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in OpenJDK. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly...

7.5CVSS6.7AI score0.014EPSS
Exploits0References25
Tenable Nessus
Tenable Nessus
added 2024/12/06 12:0 a.m.7 views

Tenable Security Center < 6.5.0 Multiple Vulnerabilities (TNS-2024-19)

According to its self-reported version, the Tenable Security Center running on the remote host is prior to 6.5.0. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-19 advisory. - Security Center leverages third-party software to help provide underlying...

9.1CVSS7.2AI score0.66582EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2024/09/06 12:0 a.m.26 views

Tenable Security Center Multiple Vulnerabilities (TNS-2024-12)

According to its self-reported version, the Tenable Security Center running on the remote host is . It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-12 advisory. - Security Center leverages third-party software to help provide underlying functionality. One of t...

8.8CVSS7.2AI score0.28807EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2024/08/14 12:0 a.m.61 views

Tenable Security Center Multiple Vulnerabilities (TNS-2024-13)

According to its self-reported version, the Tenable Security Center running on the remote host is 6.2.1, 6.3.0 or 6.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-13 advisory. - Security Center leverages third-party software to help provide underlying...

9.8CVSS7.5AI score0.99957EPSS
Exploits14References19
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2024/08/13 2:51 p.m.17 views

[R1] Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202408.1

R1 Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202408.1 Arnie Cabral Tue, 08/13/2024 - 10:51 Security Center leverages third-party software to help provide underlying functionality. Several of the third-party components Apache, libcurl were...

7.6AI score
Exploits0
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2024/07/09 12:33 p.m.11 views

[R1] Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202407.1

R1 Stand-alone Security Patch Available for Tenable Security Center versions 6.2.1, 6.3.0 and 6.4.0: SC-202407.1 Arnie Cabral Tue, 07/09/2024 - 08:33 Security Center leverages third-party software to help provide underlying functionality. One of the third-party components PHP was found to contain...

7.6AI score
Exploits0
NVD
NVD
added 2024/06/12 4:15 p.m.36 views

CVE-2024-5759

An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges...

6.3CVSS0.00305EPSS
Exploits0References1
OSV
OSV
added 2024/06/12 4:15 p.m.4 views

CVE-2024-5759

An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges...

6.3CVSS5.8AI score0.00305EPSS
Exploits0References1
OSV
OSV
added 2024/06/12 4:15 p.m.3 views

CVE-2024-1891

A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML code into a web application scan result page...

5.4CVSS5.4AI score
Exploits0References1
Cvelist
Cvelist
added 2024/06/12 4:0 p.m.43 views

CVE-2024-5759 Improper privilege management

An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges...

5.4CVSS0.00305EPSS
Exploits0References1
CVE
CVE
added 2024/06/12 4:0 p.m.69 views

CVE-2024-5759

CVE-2024-5759 affects Tenable Security Center. It is an improper privilege management vulnerability where an authenticated, remote attacker could view unauthorized objects and initiate scans without the required privileges. The issue is addressed in Security Center 6.4.0 (upgrade to 6.4.0 or late...

6.3CVSS6.3AI score0.00305EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/06/12 3:56 p.m.32 views

CVE-2024-1891 Stored Cross Site Scripting

A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML code into a web application scan result page...

3.5CVSS0.00302EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/12 3:56 p.m.13 views

CVE-2024-1891 Stored Cross Site Scripting

A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML code into a web application scan result page...

3.5CVSS6.1AI score0.00302EPSS
Exploits0References1
CVE
CVE
added 2024/06/12 3:56 p.m.71 views

CVE-2024-1891

The CVE-2024-1891 entry describes a stored cross-site scripting vulnerability in Tenable Security Center. A authenticated, remote attacker could inject HTML code into a web application scan result page due to inadequate input handling in the affected component/file. Relevant details show impact c...

5.4CVSS4.6AI score0.00302EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/12 12:0 a.m.5 views

PT-2024-18398 · Tenable · Tenable Security Center

Name of the Vulnerable Software and Affected Versions: Tenable Security Center affected versions not specified Description: A stored cross site scripting issue exists, allowing an authenticated, remote attacker to inject HTML code into a web application scan result page. Recommendations: At the...

5.4CVSS6AI score0.00302EPSS
Exploits0References2
Rows per page
Query Builder