[R1] Stand-alone Security Patches Available for Tenable Security Center versions...

9.9 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Description

A Command Injection vulnerability exists where an authenticated, remote attacker could execute arbitrary code on the underlying server where Tenable Security Center is hosted.

AI Analysis

Command Injection vulnerability allowing remote execution of arbitrary code

Basic Information

ID CVE-2026-2630

Source tenable

Published Feb 17, 2026 at 18:19

Modified Feb 17, 2026 at 18:57

Affected Product

Vendor Tenable

Product Security Center

Affected Versions Tenable Security Center 0

CWE Classification

CWE-78

AI Assessment

AI Score 9.9 / 10

AI Severity Critical

Vendor Tenable

Product Tenable Security Center

Version 6.5.1, 6.6.0, 6.7.2

References

www.tenable.com /security/tns-2026-06

{
    "lastseen": "",
    "description": "A Command Injection vulnerability exists where an authenticated, remote attacker could execute arbitrary code on the underlying server where Tenable Security Center is hosted.",
    "published": "2026-02-17T18:19:38.416Z",
    "modified": "2026-02-17T18:57:53.480Z",
    "type": "cve",
    "title": "[R1] Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2",
    "source": "tenable",
    "references": "https://www.tenable.com/security/tns-2026-06",
    "id": "CVE-2026-2630",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "Tenable Security Center 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.9,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Security Center",
    "version": "0",
    "vendor": "Tenable",
    "ai_description": "Command Injection vulnerability allowing remote execution of arbitrary code",
    "ai_severity": "Critical",
    "ai_vendor": "Tenable",
    "ai_product": "Tenable Security Center",
    "ai_version": "6.5.1, 6.6.0, 6.7.2",
    "ai_score": 9.9
}

[R1] Stand-alone Security Patches Available for Tenable Security Center versions 6.5.1, 6.6.0 and 6.7.2: SC-202602.1 + SC-202602.2_CVE-2026-2630