PT-2025-22816 · Tenable · Tenable Network Monitor

Will Dormann

Publicado

2024-11-15

Atualizado

2025-06-03

CVE-2025-24917

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Tenable Network Monitor versions prior to 6.5.1

Description A security issue was found where a non-administrative user could stage files in a local directory to run arbitrary code with SYSTEM privileges, potentially leading to local privilege escalation.

Recommendations For versions prior to 6.5.1, update to version 6.5.1 or later to resolve the issue.

Correção

LPE

Improper Access Control

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-284

Identificadores relacionados

BDU:2025-11614

CVE-2025-24917

Produtos afetados

Tenable Network Monitor

PT-2025-22816 · Tenable · Tenable Network Monitor

CVE-2025-24917

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8