ГлавнаяУязвимости → CVE-2024-3232
7.6высокая

CVE-2024-3232

Описание

A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232

Затрагиваемое ПО
Tenable Identity exposure
CVSS
Балл7.6 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Источники
https://www.tenable.com/security/tns-2024-04https://www.tenable.com/security/tns-2024-04