Identity Exposure

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-13007	Tenable Identity Exposure		0.00	—	—		Jun 23, 2026	Tenable Identity Exposure contains multiple unauthenticated API endpoints under /w/api/* that expose sensitive application configuration data including cleartext LDAP credentials, SAML configuration, user accounts, and directory settings to unauthenticated remote attackers.…
CVE-2024-3232	Tenable Identity Exposure		0.00	—	0.00		Jul 16, 2024	A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232

CVE-2026-13007Jun 23, 2026
Tenable
Identity Exposure
risk 0.00cvss —epss —
Tenable Identity Exposure contains multiple unauthenticated API endpoints under /w/api/* that expose sensitive application configuration data including cleartext LDAP credentials, SAML configuration, user accounts, and directory settings to unauthenticated remote attackers.…
CVE-2024-3232Jul 16, 2024
Tenable
Identity Exposure
risk 0.00cvss —epss 0.00
A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232