CVE-2024-1471

An HTML injection vulnerability exists where an authenticated, remote attacker with administrator privileges on the Security Center application could modify Repository parameters, which could lead to HTML redirection attacks.

Published: Feb 14, 2024
Updated: May 4, 2025
CVE: CVE-2024-1471
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.8
AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
tenable / security_center	-	6.3.0

https://www.tenable.com/security/tns-2024-02

Vulnerability Database

290,020

CVE-2024-1471