Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Netscout Subscribe

CVSS v3 Filter

ALL
NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 24 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-27000 1 Netscout 1 Ngeniusone 2024-01-11 N/A 6.1 MEDIUM
Cross Site Scripting vulnerability found in NetScoutnGeniusOne v.6.3.4 allows a remote attacker to execute arbitrary code via the name parameter of the Profile and Exclusion List page(s).
CVE-2023-26999 1 Netscout 1 Ngeniusone 2024-01-11 N/A 9.8 CRITICAL
An issue found in NetScout nGeniusOne v.6.3.4 allows a remote attacker to execute arbitrary code and cause a denial of service via a crafted file.
CVE-2023-26998 1 Netscout 1 Ngeniusone 2024-01-11 N/A 5.4 MEDIUM
Cross Site Scripting vulnerability found in NetScoutnGeniusOne v.6.3.4 allows a remote attacker to execute arbitrary code via the creator parameter of the Alert Configuration page.
CVE-2023-41171 1 Netscout 1 Ngeniusone 2023-12-12 N/A 5.4 MEDIUM
NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability (issue 3 of 4).
CVE-2023-41170 1 Netscout 1 Ngeniusone 2023-12-12 N/A 6.1 MEDIUM
NetScout nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting vulnerability.
CVE-2023-41169 1 Netscout 1 Ngeniusone 2023-12-12 N/A 5.4 MEDIUM
NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability (issue 2 of 4).
CVE-2023-41168 1 Netscout 1 Ngeniusone 2023-12-12 N/A 5.4 MEDIUM
NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability (issue 1 of 4).
CVE-2023-40301 1 Netscout 1 Ngeniuspulse 2023-12-12 N/A 9.8 CRITICAL
NETSCOUT nGeniusPULSE 3.8 has a Command Injection Vulnerability.
CVE-2023-40302 1 Netscout 1 Ngeniuspulse 2023-12-12 N/A 9.1 CRITICAL
NETSCOUT nGeniusPULSE 3.8 has Weak File Permissions Vulnerability
CVE-2023-40300 1 Netscout 1 Ngeniuspulse 2023-12-12 N/A 9.8 CRITICAL
NETSCOUT nGeniusPULSE 3.8 has a Hardcoded Cryptographic Key.
CVE-2023-41172 1 Netscout 1 Ngeniusone 2023-12-12 N/A 5.4 MEDIUM
NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability (issue 4 of 4).
CVE-2023-41905 1 Netscout 1 Ngeniusone 2023-12-12 N/A 5.4 MEDIUM
NETSCOUT nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting (XSS) vulnerability by an authenticated user.
CVE-2021-45983 1 Netscout 1 Ngeniusone 2023-08-08 7.5 HIGH 9.8 CRITICAL
NetScout nGeniusONE 6.3.2 allows Java RMI Code Execution.
CVE-2021-35202 1 Netscout 1 Ngeniusone 2022-07-12 4.3 MEDIUM 4.3 MEDIUM
NETSCOUT Systems nGeniusONE 6.3.0 build 1196 allows Authorization Bypass (to access an endpoint) in FDSQueryService.
CVE-2021-45981 1 Netscout 1 Ngeniusone 2022-06-13 7.5 HIGH 9.8 CRITICAL
NetScout nGeniusONE 6.3.2 allows an XML External Entity (XXE) attack.
CVE-2021-35203 1 Netscout 1 Ngeniusone 2021-10-04 3.5 LOW 5.7 MEDIUM
NETSCOUT Systems nGeniusONE 6.3.0 build 1196 allows Arbitrary File Read operations via the FDSQueryService endpoint.
CVE-2021-35201 1 Netscout 1 Ngeniusone 2021-10-04 4.3 MEDIUM 6.5 MEDIUM
NEI in NETSCOUT nGeniusONE 6.3.0 build 1196 allows XML External Entity (XXE) attacks.
CVE-2021-35205 1 Netscout 1 Ngeniusone 2021-10-04 4.9 MEDIUM 5.4 MEDIUM
NETSCOUT Systems nGeniusONE version 6.3.0 build 1196 allows URL redirection in redirector.
CVE-2021-35204 1 Netscout 1 Ngeniusone 2021-10-04 3.5 LOW 5.4 MEDIUM
NETSCOUT Systems nGeniusONE 6.3.0 build 1196 allows Reflected Cross-Site Scripting (XSS) in the support endpoint.
CVE-2021-35200 1 Netscout 1 Ngeniusone 2021-10-04 3.5 LOW 4.8 MEDIUM
NETSCOUT nGeniusONE 6.3.0 build 1196 allows high-privileged users to achieve Stored Cross-Site Scripting (XSS) in FDSQueryService.
CVE-2021-35199 1 Netscout 1 Ngeniusone 2021-10-04 3.5 LOW 5.4 MEDIUM
NETSCOUT nGeniusONE 6.3.0 build 1196 and earlier allows Stored Cross-Site Scripting (XSS) in UploadFile.
CVE-2021-35198 1 Netscout 1 Ngeniusone 2021-10-04 3.5 LOW 5.4 MEDIUM
NETSCOUT nGeniusONE 6.3.0 build 1004 and earlier allows Stored Cross-Site Scripting (XSS) in the Packet Analysis module.
CVE-2020-28251 1 Netscout 7 Airmagnet Enterprise, Sensor4-r1s1w1-e, Sensor4-r2s1-e and 4 more 2021-07-21 9.3 HIGH 8.1 HIGH
NETSCOUT AirMagnet Enterprise 11.1.4 build 37257 and earlier has a sensor escalated privileges vulnerability that can be exploited to provide someone with administrative access to a sensor, with credentials to invoke a command to provide root access to the operating system. The attacker must complete a straightforward password-cracking exercise.
CVE-2008-6701 1 Netscout 2 Ngenius Infinistream, Visualizer 2018-10-11 7.5 HIGH N/A
NetScout (formerly Network General) Visualizer V2100 and InfiniStream i1730 do not restrict access to ResourceManager/en_US/domains/add_domain.jsp, which allows remote attackers to gain administrator privileges via a direct request.