CVE-2026-4433

UNKNOWN 0.0

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

13th

An SSH misconfigurations exists in Tenable OT that led to the potential exfiltration of socket, port, and service information via the ostunnel user and GatewayPorts. This could be used to potentially glean information about the underlying system and give an attacker information that could be used to attempt to compromise the host.

CWE	CWE-16
Vendor	tenable, inc.
Product	tenable operation technology
Published	Mar 24, 2026
Last Updated	Mar 25, 2026

Stay Ahead of the Next One

Get instant alerts for tenable, inc. tenable operation technology

Be the first to know when new unknown vulnerabilities affecting tenable, inc. tenable operation technology are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Tenable, Inc. / Tenable Operation Technology

3.18.58 ≤ 4.2.40

References

NVD ↗ CVE.org ↗ EPSS Data ↗

tenable.com: https://www.tenable.com/security/tns-2026-9