← back
CVE-2024-5759

Improper privilege management

CVSS 5.4 MEDIUMEPSS 0.3%CWE-269
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.4EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
12 Jun 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
Affected products
Tenable · Security Center

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.tenable.com/security/tns-2024-10