Tenable Identity Exposure leverages third-party software to help provide underlying functionality. Several of the third-party components (OpenSSL, curl, envoy, nodeJS) were found to contain vulnerabilities, and updated versions have been made available by the providers.