Описание
Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerability which could allow a remote, unauthenticated attacker to execute code under special circumstances. An attacker would first have to stage a specific file type in the web server root of the Tenable.sc host prior to remote exploitation.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 5.14.0 (включая) до 5.19.1 (включая)
cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*
EPSS
Процентиль: 83%
0.01943
Низкий
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 8.1
github
около 4 лет назад
Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerability which could allow a remote, unauthenticated attacker to execute code under special circumstances. An attacker would first have to stage a specific file type in the web server root of the Tenable.sc host prior to remote exploitation.
EPSS
Процентиль: 83%
0.01943
Низкий
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
NVD-CWE-noinfo