CVE-2024-3232 - Vulnerability Details - OpenCVE

A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00813.

Key SSVC decision points have not yet been added.

Vendors	Products
Tenable	Identity Exposure

Configuration 1 [-]

cpe:2.3:a:tenable:identity_exposure:*:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2024-31824	A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232

Fixes

Solution

Tenable has released Tenable Identity Exposure Version 3.59.4 to address these issues. The installation files can be obtained from the Tenable Downloads Portal: https://www.tenable.com/downloads/identity-exposure

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.tenable.com/security/tns-2024-04

History

Wed, 22 Oct 2025 20:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Tenable Tenable identity Exposure
CPEs		cpe:2.3:a:tenable:identity_exposure::::::::
Vendors & Products		Tenable Tenable identity Exposure

MITRE

Status: PUBLISHED

Assigner: tenable

Published: 2024-07-16T17:02:19.000Z

Updated: 2024-08-01T20:05:08.350Z

Reserved: 2024-04-02T19:00:49.569Z

Link: CVE-2024-3232

Vulnrichment

Updated: 2024-08-01T20:05:08.350Z

NVD

Status : Analyzed

Published: 2024-07-16T17:15:11.267

Modified: 2025-10-22T20:30:36.200

Link: CVE-2024-3232

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-3232", "assignerOrgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be", "state": "PUBLISHED", "assignerShortName": "tenable", "dateReserved": "2024-04-02T19:00:49.569Z", "datePublished": "2024-07-16T17:02:19.000Z", "dateUpdated": "2024-08-01T20:05:08.350Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "platforms": ["Windows"], "product": "Tenable Identity Exposure", "vendor": "Tenable", "versions": [{"status": "affected", "version": "Tenable Identity Exposure 3.42"}, {"status": "affected", "version": "Tenable Identity Exposure 3.29"}, {"status": "affected", "version": "Tenable Identity Exposure 3.19"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Ammarit Thongthua and Sarun Pornjarungsak from Secure D Research team"}], "datePublic": "2024-02-21T19:50:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\nA formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232\n\n"}], "value": "A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232"}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1236", "description": "CWE-1236 Improper Neutralization of Formula Elements in a CSV File", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be", "shortName": "tenable", "dateUpdated": "2024-07-16T17:02:19.000Z"}, "references": [{"url": "https://www.tenable.com/security/tns-2024-04"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\nTenable has released Tenable Identity Exposure Version 3.59.4 to address these issues. The installation files can be obtained from the Tenable Downloads Portal: <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.tenable.com/downloads/identity-exposure\">https://www.tenable.com/downloads/identity-exposure</a>\n\n<br>"}], "value": "Tenable has released Tenable Identity Exposure Version 3.59.4 to address these issues. The installation files can be obtained from the Tenable Downloads Portal: https://www.tenable.com/downloads/identity-exposure"}], "source": {"advisory": "tns-2024-04", "discovery": "EXTERNAL"}, "title": "Formula Injection Vulnerability", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"affected": [{"vendor": "tenable", "product": "identity_exposure", "cpes": ["cpe:2.3:a:tenable:identity_exposure:3.19:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "3.19", "status": "affected"}]}, {"vendor": "tenable", "product": "identity_exposure", "cpes": ["cpe:2.3:a:tenable:identity_exposure:3.29:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "3.29", "status": "affected"}]}, {"vendor": "tenable", "product": "identity_exposure", "cpes": ["cpe:2.3:a:tenable:identity_exposure:3.42:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "3.42", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-16T19:12:59.960894Z", "id": "CVE-2024-3232", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-17T13:59:11.375Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:05:08.350Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.tenable.com/security/tns-2024-04", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.tenable.com/security/tns-2024-04", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:05:08.350Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-3232", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-07-16T19:12:59.960894Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:tenable:identity_exposure:3.19:*:*:*:*:*:*:*"], "vendor": "tenable", "product": "identity_exposure", "versions": [{"status": "affected", "version": "3.19"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:tenable:identity_exposure:3.29:*:*:*:*:*:*:*"], "vendor": "tenable", "product": "identity_exposure", "versions": [{"status": "affected", "version": "3.29"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:tenable:identity_exposure:3.42:*:*:*:*:*:*:*"], "vendor": "tenable", "product": "identity_exposure", "versions": [{"status": "affected", "version": "3.42"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-16T20:12:05.415Z"}}], "cna": {"title": "Formula Injection Vulnerability", "source": {"advisory": "tns-2024-04", "discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Ammarit Thongthua and Sarun Pornjarungsak from Secure D Research team"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Tenable", "product": "Tenable Identity Exposure", "versions": [{"status": "affected", "version": "Tenable Identity Exposure 3.42"}, {"status": "affected", "version": "Tenable Identity Exposure 3.29"}, {"status": "affected", "version": "Tenable Identity Exposure 3.19"}], "platforms": ["Windows"], "defaultStatus": "affected"}], "solutions": [{"lang": "en", "value": "Tenable has released Tenable Identity Exposure Version 3.59.4 to address these issues. The installation files can be obtained from the Tenable Downloads Portal: https://www.tenable.com/downloads/identity-exposure", "supportingMedia": [{"type": "text/html", "value": "\n\nTenable has released Tenable Identity Exposure Version 3.59.4 to address these issues. The installation files can be obtained from the Tenable Downloads Portal: <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.tenable.com/downloads/identity-exposure\">https://www.tenable.com/downloads/identity-exposure</a>\n\n<br>", "base64": false}]}], "datePublic": "2024-02-21T19:50:00.000Z", "references": [{"url": "https://www.tenable.com/security/tns-2024-04"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232", "supportingMedia": [{"type": "text/html", "value": "\n\nA formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232\n\n", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1236", "description": "CWE-1236 Improper Neutralization of Formula Elements in a CSV File"}]}], "providerMetadata": {"orgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be", "shortName": "tenable", "dateUpdated": "2024-07-16T17:02:19.000Z"}}}, "cveMetadata": {"cveId": "CVE-2024-3232", "state": "PUBLISHED", "dateUpdated": "2024-08-01T20:05:08.350Z", "dateReserved": "2024-04-02T19:00:49.569Z", "assignerOrgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be", "datePublished": "2024-07-16T17:02:19.000Z", "assignerShortName": "tenable"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tenable:identity_exposure:*:*:*:*:*:*:*:*", "matchCriteriaId": "41048D01-1264-4CB2-972C-276B47FAA192", "versionEndExcluding": "3.59.4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A formula injection vulnerability exists in Tenable Identity Exposure where an authenticated remote attacker with administrative privileges could manipulate application form fields in order to trick another administrator into executing CSV payloads. - CVE-2024-3232"}, {"lang": "es", "value": "Existe una vulnerabilidad de inyecci\u00f3n de f\u00f3rmula en Tenable Identity Exposure donde un atacante remoto autenticado con privilegios administrativos podr\u00eda manipular los campos del formulario de solicitud para enga\u00f1ar a otro administrador para que ejecute payloads CSV. - CVE-2024-3232"}], "id": "CVE-2024-3232", "lastModified": "2025-10-22T20:30:36.200", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 6.0, "source": "vulnreport@tenable.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-07-16T17:15:11.267", "references": [{"source": "vulnreport@tenable.com", "tags": ["Vendor Advisory"], "url": "https://www.tenable.com/security/tns-2024-04"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.tenable.com/security/tns-2024-04"}], "sourceIdentifier": "vulnreport@tenable.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1236"}], "source": "vulnreport@tenable.com", "type": "Secondary"}]}