CVE-2026-2698

MEDIUM

Tenable Security Center <= 6.8.0 - Improper Access Control

Title source: llm
STIX 2.1

Description

An improper access control vulnerability exists where an authenticated user could access areas outside of their authorized scope.

References (2)

Scores

CVSS v3 6.5
EPSS 0.0004
EPSS Percentile 10.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-639
Status published
Products (1)
tenable/security_center < 6.8.0
Published Feb 23, 2026
Tracked Since Feb 23, 2026