📦

identity_exposure

Vendor: tenable

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.99% Exploit Prob.

Latest CVE CVE-2024-3232 Jul 16

Security Vulnerability Index

Page 1 / 1

7.6 CVSS

CVE-2024-3232

A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232

EPSS: 1.94%

Severity: HIGH

Jul 16, 2024

7.3 CVSS

CVE-2024-1683

RCE

A DLL injection vulnerability exists where an authenticated, low-privileged local attacker could modify application files on the TIE Secure Relay host, which could allow for overriding of the configuration and running of new Secure Relay services.

EPSS: 0.03%

Severity: HIGH

Feb 23, 2024

Displaying 2 of 2 Total Entries

Total 1 Sections