Improper Privilege Management in Tenable Security Center
CVE-2024-5759

6.3MEDIUM

Key Information:

Vendor: Tenable
Status: Security Center
Vendor: CVE Published:; 12 June 2024

What is CVE-2024-5759?

An improper privilege management vulnerability in the Tenable Security Center allows an authenticated remote attacker to exploit insufficient access controls. This can result in the unauthorized viewing of sensitive objects and the ability to initiate scans without possessing the necessary privileges. This threat poses significant risks to the integrity of security operations and necessitates immediate attention to safeguard against potential exploitation.

References

https://www.tenable.com/security/tns-2024-10

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 12, 2024