Security Center@* Security Vulnerabilities and Issues — Security Center@* CVE List

Lucene search

TenableSecurity Center*

4 matches found

CVE•added 2024/06/12 4:15 p.m.•58 views

CVE-2024-1891

A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML code into a web application scan result page.

5.4CVSS4.6AI score0.00214EPSS

CVE•added 2024/06/12 4:15 p.m.•50 views

CVE-2024-5759

An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges

6.3CVSS6.3AI score0.00471EPSS

CVE•added 2024/02/14 10:15 p.m.•43 views

CVE-2024-1471

An HTML injection vulnerability exists where an authenticated, remote attacker with administrator privileges on the Security Center application could modify Repository parameters, which could lead to HTML redirection attacks.

5.9CVSS5.7AI score0.00133EPSS

CVE•added 2024/02/14 10:15 p.m.•36 views

CVE-2024-1367

A command injection vulnerability exists where an authenticated, remote attacker with administrator privileges on the Security Center application could modify Logging parameters, which could lead to the execution of arbitrary code on the Security Center host.

7.2CVSS7.3AI score0.04404EPSS