CVE-2023-24494

Name of the Vulnerable Software and Affected Versions Tenable.sc (affected versions not specified)

Description A stored cross-site scripting issue exists due to improper validation of user-supplied input before returning it to users. An authenticated, remote attacker can exploit this by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user's browser session.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.