Tenable Security Center — known CVE vulnerabilities
Every CVE whose affected-product data names Tenable Security Center, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2024-1367 — CVSS 7.2 (high): A command injection vulnerability exists where an authenticated, remote attacker with administrator privileges on the Security Center…
CVE-2026-2698 — CVSS 6.5 (medium): An improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope.
CVE-2026-2697 — CVSS 6.3 (medium): An Indirect Object Reference (IDOR) in Security Center allows an authenticated remote attacker to escalate privileges via the 'owner'…
CVE-2024-1471 — CVSS 5.9 (medium): An HTML injection vulnerability exists where an authenticated, remote attacker with administrator privileges on the Security Center…
CVE-2024-5759 — CVSS 5.4 (medium): An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view…
CVE-2024-1891 — CVSS 3.5 (low): A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML…