Remote Code Execution Vulnerability in Tenable.sc Versions 5.14.0 - 5.19.1

Remote Code Execution Vulnerability in Tenable.sc Versions 5.14.0 - 5.19.1

CVE-2022-0130 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerability which could allow a remote, unauthenticated attacker to execute code under special circumstances. An attacker would first have to stage a specific file type in the web server root of the Tenable.sc host prior to remote exploitation.

Learn more about our Web App Pen Testing.