SB2025110342 - Tenable Identity Exposure 3.77 update for third-party components

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2025110342

SB2025110342 - Tenable Identity Exposure 3.77 update for third-party components

Published: November 3, 2025 Updated: November 14, 2025

Security Bulletin ID SB2025110342
Severity
Medium
Patch available
YES
Number of vulnerabilities 8
Exploitation vector Remote access
Highest impact Privilege escalation

Breakdown by Severity

Medium 63% Low 38%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 8 secuirty vulnerabilities.


1) Out-of-bounds read (CVE-ID: CVE-2025-9086)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition when reading cookie path. A malicious server can set a specially crafted cookie path using the secure keyword, trigger an out-of-bounds read error and crash the application.


2) Use of insufficiently random values (CVE-ID: CVE-2025-10148)

The vulnerability allows a remote attacker to perform cache poisoning. 

The vulnerability exists due to the websocket code does not update the 32 bit mask pattern for each new outgoing frame as the specification says.Instead it used a fixed mask that persisted and was used throughout the entire connection. As a result, a malicious server can induce traffic between the two communicating parties that can be interpreted by an involved proxy and poison cached content. 


3) Race condition (CVE-ID: CVE-2025-47997)

The vulnerability allows a remote attacker to gain access to sensitive information on the system.

The vulnerability exists due to a race condition in Microsoft SQL Server. A remote user can exploit the race and gain unauthorized access to sensitive information on the system.


4) Use of uninitialized resource (CVE-ID: CVE-2025-49718)

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to usage of uninitialized resources in Microsoft SQL Server. A remote attacker can pass specially crafted data to the application, trigger uninitialized usage of resources and gain access to sensitive information on the system.


5) Input validation error (CVE-ID: CVE-2025-49719)

The vulnerability allows a remote attacker to gain access to sensitive information on the system.

The vulnerability exists due to insufficient validation of user-supplied input in Microsoft SQL Server. A remote attacker can pass specially crafted input to the application and disclose sensitive information.


6) Link following (CVE-ID: CVE-2025-55247)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to an insecure link following issue in .NET. A local user can create a specially crafted symbolic link to a critical file on the system and overwrite it with privileges of the application.


7) Inadequate Encryption Strength (CVE-ID: CVE-2025-55248)

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to inadequate encryption strength. A remote attacker can trick the victim to open a specially crafted email or click on the link and gain access to personally identifiable information (PII).


8) Inconsistent interpretation of HTTP requests (CVE-ID: CVE-2025-55315)

The vulnerability allows a remote attacker to perform HTTP request smuggling attacks.

The vulnerability exists due to improper validation of HTTP requests in ASP.NET. A remote user can send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.

Successful exploitation of vulnerability may allow an attacker to poison HTTP cache and perform phishing attacks.


Remediation

Install update from vendor's website.

References