CVE-2018-1154

In SecurityCenter versions prior to 5.7.0, a username enumeration issue could allow an unauthenticated attacker to automate the discovery of username aliases via brute force, ultimately facilitating unauthorized access. Server response output has been unified to correct this issue.
References
Link Resource
https://www.tenable.com/security/tns-2018-11 Patch Vendor Advisory
http://www.securitytracker.com/id/1041431 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:tenable:securitycenter:*:*:*:*:*:*:*:*

Information

Published : 2018-08-02 07:29

Updated : 2019-10-03 12:03


NVD link : CVE-2018-1154

Mitre link : CVE-2018-1154

Products Affected