CVE-2025-36636

Published: Oct 8, 2025Modified: Oct 9, 2025

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Exploitability: 2.8 / Impact: 1.4

Source: vulnreport@tenable.com (Secondary)

Description

In Tenable Security Center versions prior to 6.7.0, an improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope.

Related CWEs

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (1)

https://docs.tenable.com/release-notes/Content/security-center/2025.htm#670

Source: vulnreport@tenable.com

Timeline

No history available yet.