Tenable Security Center update for third-party components
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 16 |
| CVE-ID | CVE-2025-1219 CVE-2024-9143 CVE-2024-13176 CVE-2025-1217 CVE-2025-1734 CVE-2025-1861 CVE-2025-1736 CVE-2024-6197 CVE-2025-0665 CVE-2024-6874 CVE-2024-7264 CVE-2024-8096 CVE-2024-9681 CVE-2024-11053 CVE-2025-0167 CVE-2025-0725 |
| CWE-ID | CWE-399 CWE-787 CWE-385 CWE-20 CWE-287 CWE-415 CWE-125 CWE-295 CWE-1025 CWE-200 CWE-190 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
SecurityCenter Client/Desktop applications / Antivirus software/Personal firewalls |
| Vendor | Tenable Network Security |
Security Bulletin
This security bulletin contains information about 16 vulnerabilities.
1) Resource management error
EUVDB-ID: #VU105640
Risk: Low
CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear]
CVE-ID: CVE-2025-1219
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists in libxml streams due to usage of an incorrect Content-Type header when requesting a redirected resource. A remote attacker can leverage this vulnerability to perform content spoofing or XSS attacks.
Install update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Out-of-bounds write
EUVDB-ID: #VU98757
Risk: Low
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-9143
CWE-ID:
CWE-787 - Out-of-bounds write
Exploit availability: No
Description The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error when using the low-level GF(2^m) elliptic curve APIs with untrusted explicit values for the field polynomial. A remote attacker can send specially crafted input to the server, trigger an out-of-bounds write and perform a denial of service (DoS) attack.
Note, the vulnerability can be exploited against the application in rare cases only that involve "exotic" curve encoding.
Install update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Covert Timing Channel
EUVDB-ID: #VU103600
Risk: Medium
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-13176
CWE-ID:
CWE-385 - Covert Timing Channel
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to recover a private key.
The vulnerability exists due to a timing side-channel in ECDSA signature computations. A remote attacker can recover the private key and decrypt data.
Successful exploitation of the vulnerability requires that the attacker's process must either be located in the same physical computer or must have a very fast network connection with low latency.
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Input validation error
EUVDB-ID: #VU105644
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-1217
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to Header parser of HTTP Stream wrapper does not handle folded headers. A remote attacker can perform spoofing attack by manipulating HTTP headers.
Install update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Input validation error
EUVDB-ID: #VU105643
Risk: Medium
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-1734
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to the Streams HTTP wrapper does not fail for headers without a colon. A remote attacker can potentially perform header injection, which can lead to a spoofing attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Input validation error
EUVDB-ID: #VU105642
Risk: Low
CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear]
CVE-ID: CVE-2025-1861
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to redirect the application to a malicious URL.
The vulnerability exists due to insufficient validation of user-supplied input. The Stream HTTP wrapper truncates redirect location to 1024 bytes, which can lead to the application being redirected to a wrong URL.
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Improper Authentication
EUVDB-ID: #VU105641
Risk: Medium
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-1736
CWE-ID:
CWE-287 - Improper Authentication
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass authentication process.
The vulnerability exists due to an error in Stream HTTP wrapper header check, which can omit Basic authentication header. A remote attacker can bypass authentication mechanisms that rely on Basic authentication.
Install update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Double free
EUVDB-ID: #VU94715
Risk: Medium
CVSSv4.0: 6.9 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-6197
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in ASN1 parser within the utf8asn1str() function. A remote attacker can pass specially crafted TLS certificate to the application, trigger double free error and execute arbitrary code on the target system.
The vulnerable code can only be reached when curl is built to use GnuTLS, wolfSSL, Schannel or Secure Transport.
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Resource management error
EUVDB-ID: #VU103647
Risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2025-0665
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper management of internal resources within the application when built with the threaded resolver. A remote attacker can force the application to wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Out-of-bounds read
EUVDB-ID: #VU94716
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-6874
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the curl_url_get() function when parsing IDN URLs. A remote attacker can pass a specially crafted URL to the application, trigger an out-of-bounds read error and read contents of memory on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Out-of-bounds read
EUVDB-ID: #VU95131
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-7264
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary condition within the ASN1 parser code in the GTime2str() function. A remote attacker can trigger an out-of-bounds read error and cause a denial of service condition on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) Improper certificate validation
EUVDB-ID: #VU97150
Risk: Low
CVSSv4.0: 0.2 [CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-8096
CWE-ID:
CWE-295 - Improper Certificate Validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform MitM attack.
The vulnerability exists due to curl might fail to detect some OCSP problems when configured to use the Certificate Status Request TLS extension. A remote attacker can bypass OCSP stapling protection and perform a Man-in-the-Middle (MitM) attack.
Successful exploitation of the vulnerability requires that curl is build to use GnuTLS library.
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
13) Comparison using wrong factors
EUVDB-ID: #VU99865
Risk: Low
CVSSv4.0: 0.2 [CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-9681
CWE-ID:
CWE-1025 - Comparison using wrong factors
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform MitM attack.
The vulnerability exists due to an error in HSTS cache implementation. When curl is asked to use HSTS, the expiry time for a subdomain can overwrite a parent domain's cache entry, making it end sooner or later
than otherwise intended. This can lead to situations when the website becomes unavailable or force the client to switch to HTTP from HTTP connection earlier than intended.
Install update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
14) Information disclosure
EUVDB-ID: #VU101654
Risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-11053
CWE-ID:
CWE-200 - Exposure of sensitive information to an unauthorized actor
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to an error when using a .netrc file for credentials and an instruction to follow HTTP redirects. The cURL library can leak credentials intended for the first URL prior to redirection. This however will only occur if the .netrc file has an entry that matches the redirect target hostname but the entry either omits just the password or omits both login and password.
MitigationInstall update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
15) Information disclosure
EUVDB-ID: #VU103648
Risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2025-0167
CWE-ID:
CWE-200 - Exposure of sensitive information to an unauthorized actor
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to application can leak credentials when asked to use a .netrc file for credentials and to follow HTTP redirects. A remote attacker can gain access to sensitive information.
Install update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
16) Integer overflow
EUVDB-ID: #VU103646
Risk: High
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2025-0725
CWE-ID:
CWE-190 - Integer overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to integer overflow when handling gzip decompression of content-encoded HTTP responses with the CURLOPT_ACCEPT_ENCODING option using zlib 1.2.0.3 or older. A remote attacker can send specially crafted response to the application, trigger an integer overflow and execute arbitrary code on the target system.
Install update from vendor's website.
Vulnerable software versionsSecurityCenter: 6.3.0 - 6.5.1
CPE2.3- cpe:2.3:a:tenable_network_security:securitycenter:6.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tenable_network_security:securitycenter:6.4.5:*:*:*:*:*:*:*
https://www.tenable.com/security/tns-2025-04
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
