2 matches found
CVE-2024-3232
The CVE-2024-3232 issue affects Tenable Identity Exposure. The vulnerability is a formula injection where an authenticated, admin-level attacker can manipulate application form fields to induce another administrator to execute CSV payloads. Concrete details in connected sources indicate Tenable I...
CVE-2024-1683
CVE-2024-1683 describes a DLL injection vulnerability in Tenable Identity Exposure Secure Relay where an authenticated, low-privileged local attacker could modify application files on the TIE Secure Relay host, potentially overriding configuration and starting new Secure Relay services. The CVSS ...