CVE-2025-36632 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
tenable	CNA	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA-ADP	ADP	---				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Common Weakness Enumeration

CWE-276 - Incorrect Default Permissions
During installation, installed file permissions are set to allow anyone to modify those files.

Vulnerability Media Exposure

[GERMAN] Tenable Security Nessus: Mehrere Schwachstellen
Ein lokaler Angreifer kann eine Schwachstelle in Tenable Security Nessus ausnutzen, um mit SYSTEM-Rechten Dateien zu überschreiben, zu löschen und um beliebigen Programmcode auszuführen.
Published: 2025-06-12T22:00:00+00:00
[GERMAN] Sicherheitslücken Tenable Agent: Angreifer können Systemdaten überschreiben
Die Entwickler haben in der aktuellen Ausgabe von Tenable Agent mehrere Sicherheitslücken geschlossen.
Published: 2025-06-15T10:54:00+00:00
[ENGLISH] ⚡ Weekly Recap: iPhone Spyware, Microsoft 0-Day, TokenBreak Hack, AI Data Leaks and More
Some of the biggest security problems start quietly. No alerts. No warnings. Just small actions that seem normal but aren't. Attackers now know how to stay hidden by blending in, and that makes it hard to tell when something’s wrong. This week’s stories aren’t just about what was attacked—but how easily it happened. If we’re only looking for the obvious signs, what are we missing right in front
Published: 2025-06-16T16:59:00+05:30

References

https://www.tenable.com/security/tns-2025-11