CVE-2026-4433

Published Mar 24, 2026
·
Updated

An SSH misconfigurations exists in Tenable OT that led to the potential exfiltration of socket, port, and service information via the ostunnel user and GatewayPorts. This could be used to potentially glean information about the underlying system and give an attacker information that could be used to attempt to compromise the host.

Affected Software

1 affected component
Tenable Tenable OT

Remediation

Information

Tenable has released Tenable OT Security and Tenable OT Security Enterprise Manager ISOs that contains the fix for new installations of the product. The installation files can be obtained from the Tenable Downloads Portal (https://www.tenable.com/downloads/tenable-appliance). Tenable has released the patch to address this issue within the currently deployed products.

Event History

Mar 24, 2026
CVE Published
via MITRE·08:26 PM
Data Sourced
via MITRE·08:26 PM
RemedyDescriptionWeakness
Data Sourced
via NVD·09:16 PM
DescriptionSeverityWeakness
Sep 4, 58213
Event
via FIRST·09:03 PM
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2026-4433?

CVE-2026-4433 is rated as a medium-severity vulnerability that could lead to potential information exfiltration.

2

How do I fix CVE-2026-4433?

To mitigate CVE-2026-4433, ensure that SSH configurations are reviewed and hardened to restrict GatewayPorts and ostunnel permissions.

3

What systems are affected by CVE-2026-4433?

CVE-2026-4433 affects the Tenable OT software environment.

4

What potential risks are associated with CVE-2026-4433?

CVE-2026-4433 can allow attackers to gather sensitive socket, port, and service information, leading to further exploitation.

5

Is there a patch available for CVE-2026-4433?

As of now, a specific patch for CVE-2026-4433 has not been publicly disclosed, but users should follow guidelines to secure their SSH configurations.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203
CVE-2026-4433 - SecAlerts