Netscout: Security Vulnerabilities
NetScout nGeniusONE 6.3.2 allows Java RMI Code Execution.
CVSS Score
9.8
EPSS Score
0.013
Published
2022-06-02
NETSCOUT nGeniusONE 6.3.0 build 1004 and earlier allows Stored Cross-Site Scripting (XSS) in the Packet Analysis module.
CVSS Score
5.4
EPSS Score
0.005
Published
2021-09-30
NETSCOUT nGeniusONE 6.3.0 build 1196 and earlier allows Stored Cross-Site Scripting (XSS) in UploadFile.
CVSS Score
5.4
EPSS Score
0.005
Published
2021-09-30
NETSCOUT nGeniusONE 6.3.0 build 1196 allows high-privileged users to achieve Stored Cross-Site Scripting (XSS) in FDSQueryService.
CVSS Score
4.8
EPSS Score
0.005
Published
2021-09-30
NEI in NETSCOUT nGeniusONE 6.3.0 build 1196 allows XML External Entity (XXE) attacks.
CVSS Score
6.5
EPSS Score
0.003
Published
2021-09-30
NETSCOUT Systems nGeniusONE 6.3.0 build 1196 allows Authorization Bypass (to access an endpoint) in FDSQueryService.
CVSS Score
4.3
EPSS Score
0.002
Published
2021-09-30
NETSCOUT Systems nGeniusONE 6.3.0 build 1196 allows Arbitrary File Read operations via the FDSQueryService endpoint.
CVSS Score
5.7
EPSS Score
0.003
Published
2021-09-30
NETSCOUT Systems nGeniusONE 6.3.0 build 1196 allows Reflected Cross-Site Scripting (XSS) in the support endpoint.
CVSS Score
5.4
EPSS Score
0.005
Published
2021-09-30
NETSCOUT Systems nGeniusONE version 6.3.0 build 1196 allows URL redirection in redirector.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-09-30
NETSCOUT AirMagnet Enterprise 11.1.4 build 37257 and earlier has a sensor escalated privileges vulnerability that can be exploited to provide someone with administrative access to a sensor, with credentials to invoke a command to provide root access to the operating system. The attacker must complete a straightforward password-cracking exercise.
CVSS Score
8.1
EPSS Score
0.004
Published
2020-12-03