Primary

Context

Tenable Network Monitor Local Privilege Escalation Vulnerability

Vulnerability

Patched

A local privilege escalation vulnerability exists in Tenable Network Monitor versions prior to 6.5.1, when installed in a non-default location on Windows. The application failed to enforce secure permissions for sub-directories, potentially allowing users to escalate privileges if they had not manually secured those directories.

Impact

Exploitation of this vulnerability could lead to unauthorized local privilege escalation, allowing a user to gain elevated rights on the system.

Remediation

Users can upgrade to Tenable Network Monitor version 6.5.1 to address this vulnerability. The installation files are available from the Tenable Downloads Portal.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

3.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

3.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenable Network Monitor Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Tenable Network Monitor

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating