A command injection vulnerability exists where an authenticated, remote attacker with administrator privileges on the Security Center application could modify Logging parameters, which could lead to the execution of arbitrary code on the Security Center host.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.tenable.com/security/tns-2024-02 |
History
Tue, 19 Nov 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Tenable
Tenable security Center |
|
CPEs | cpe:2.3:a:tenable:security_center:*:*:*:*:*:*:*:* | |
Vendors & Products |
Tenable
Tenable security Center |
MITRE
Status: PUBLISHED
Assigner: tenable
Published: 2024-02-14T21:35:16.767Z
Updated: 2024-08-01T18:40:19.949Z
Reserved: 2024-02-08T19:43:20.585Z
Link: CVE-2024-1367
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-02-14T22:15:47.753
Modified: 2024-11-21T08:50:25.600
Link: CVE-2024-1367
Redhat
No data.