CVE-2025-36636
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-10-08
Last updated on: 2025-10-09
Assigner: Tenable Network Security, Inc.
Description
Description
In Tenable Security Center versions prior to 6.7.0, an improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tenable | security_center | 6.7.0 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in Tenable Security Center versions prior to 6.7.0 is an improper access control issue where an authenticated user can access areas beyond their authorized permissions.
How can this vulnerability impact me? :
The vulnerability could allow an authenticated user to access sensitive or restricted areas of the system that they should not have permission to access, potentially leading to unauthorized data exposure or manipulation.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70