[R1] Tenable.sc 5.20.0 Fixes Multiple Vulnerabilities

Read Time:28 Second

Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerability which could allow a remote, unauthenticated attacker to execute code under special circumstances. An attacker would first have to stage a specific file type in the web server root of the Tenable.sc host prior to remote exploitation.

Also, Tenable.sc leverages third-party software to help provide underlying functionality. One of the third-party components (Apache) was found to contain vulnerabilities, and updated versions have been made available by the providers.

Generated by Feedzy

Cyber Security News

UK police reveal they are running fake DDoS-for-hire sites to collect details on cybercriminals

Microsoft Fixes Security Flaw in Windows Screenshot Tools

Three Variants of IcedID Malware Discovered

New MacStealer Targets Catalina, Newer MacOS Versions

Can zero trust be saved?

Part of Twitter source code leaked on GitHub

Hacks at Pwn2Own Vancouver 2023

France bans TikTok, all social media apps from government devices

How often should security audits be?

[R1] Tenable.sc 5.20.0 Fixes Multiple Vulnerabilities

USN-5974-1: GraphicsMagick vulnerabilities

USN-5973-1: url-parse vulnerabilities

USN-5964-2: curl vulnerabilities

LSN-0093-1: Kernel Live Patch Security Notice

USN-5972-1: Thunderbird vulnerabilities

CVE-2018-25083