Known Vulnerabilities for Tenable.sc by Tenable

Listed below are 10 of the newest known vulnerabilities associated with "Tenable.sc" by "Tenable".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-4433 json An SSH misconfigurations exists in Tenable OT that led to the potential exfiltration of socket, port, and service information... Not Provided 2026-03-24 2026-03-25
CVE-2023-24495 json A Server Side Request Forgery (SSRF) vulnerability exists in Tenable.sc due to improper validation of session & user-accessib... 6.5 - MEDIUM 2023-01-26 2023-02-06
CVE-2023-24494 json A stored cross-site scripting (XSS) vulnerability exists in Tenable.sc due to improper validation of user-supplied input befo... 5.4 - MEDIUM 2023-01-26 2023-02-02
CVE-2023-24493 json A formula injection vulnerability exists in Tenable.sc due to improper validation of user-supplied input before returning it ... 5.7 - MEDIUM 2023-01-26 2023-02-02
CVE-2023-0524 json As part of our Security Development Lifecycle, a potential privilege escalation issue was identified internally. This could a... 8.8 - HIGH 2023-02-01 2023-02-07
CVE-2023-0476 json A LDAP injection vulnerability exists in Tenable.sc due to improper validation of user-supplied input before returning it to ... 6.5 - MEDIUM 2023-01-26 2023-02-06
CVE-2022-24828 json Composer is a dependency manager for the PHP programming language. Integrators using Composer code to call `VcsDriver::getFil... 8.8 - HIGH 2022-04-13 2023-11-07
CVE-2022-24785 json Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. A path traversal vulnerab... 7.5 - HIGH 2022-04-04 2023-11-07
CVE-2022-0130 json Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerability which could allow a rem... 8.1 - HIGH 2022-01-14 2023-08-08
CVE-2021-44790 json A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua s... 9.8 - CRITICAL 2021-12-20 2023-11-07
Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationTenableTenable.sc5.17.0
ApplicationTenableTenable.sc5.14.1
ApplicationTenableTenable.sc5.14.0
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report