Tenable: >> Security Center >> 6.3.0 Security Vulnerabilities
An improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope.
CVSS Score
6.5
EPSS Score
0.0
Published
2026-02-23
An Indirect Object Reference (IDOR) in Security Center allows an authenticated remote attacker to escalate privileges via the 'owner' parameter.
CVSS Score
6.3
EPSS Score
0.001
Published
2026-02-23
An improper privilege management vulnerability exists in Tenable Security Center where an authenticated, remote attacker could view unauthorized objects and launch scans without having the required privileges
CVSS Score
5.4
EPSS Score
0.006
Published
2024-06-12
A stored cross site scripting vulnerability exists in Tenable Security Center where an authenticated, remote attacker could inject HTML code into a web application scan result page.
CVSS Score
3.5
EPSS Score
0.002
Published
2024-06-12