CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2023/12/07 12:0 a.m.•0 views

NetScout nGeniusONE Security Vulnerability

NetScout nGeniusONE is a centralized application management and network performance solution from NetScout, Inc. A security vulnerability exists in NetScout nGeniusONE version 6.3.4. An attacker can exploit this vulnerability to conduct cross-site scripting attacks...

6.1CVSS6AI score0.00227EPSS

Cvelist•added 2023/12/07 12:0 a.m.•10 views

CVE-2023-41170

NetScout nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting vulnerability...

6.4AI score0.00227EPSS

Vulnrichment•added 2023/12/07 12:0 a.m.•5 views

CVE-2023-40301

NETSCOUT nGeniusPULSE 3.8 has a Command Injection Vulnerability...

7.3AI score0.00756EPSS

CVE•added 2023/12/07 12:0 a.m.•34 views

CVE-2023-41905

CVE-2023-41905 affects NETSCOUT nGeniusONE 6.3.4 build 2298, where an authenticated user can trigger a reflected XSS vulnerability. The available connected records confirm the affected product/version and the vulnerability class (Reflected XSS) but do not provide exploit details, affected compone...

5.4CVSS5.3AI score0.002EPSS

CVE•added 2023/12/07 12:0 a.m.•29 views

CVE-2023-40300

NETSCOUT nGeniusPULSE 3.8 is affected by a hardcoded cryptographic key. The available connected sources confirm the issue exists in version 3.8 and describe the risk as potentially enabling unauthorized access or decryption of sensitive data. No details on exploit vectors, affected configurations...

9.8CVSS9.3AI score0.00422EPSS

Cvelist•added 2023/12/07 12:0 a.m.•17 views

CVE-2023-41171

NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability issue 3 of 4...

5.6AI score0.00475EPSS

CVE•added 2023/12/07 12:0 a.m.•28 views

CVE-2023-41168

NetScout nGeniusONE 6.3.4 build 2298 is affected by a Stored Cross-Site Scripting vulnerability. The stored scripts reside on the server and are executed when a user accesses the affected page. Connected PT-2023-27843 notes no information about a fix/version with a patch; no other remediation det...

5.4CVSS5.3AI score0.00569EPSS

CVE•added 2023/12/07 12:0 a.m.•34 views

CVE-2023-40302

CVE-2023-40302 affects NETSCOUT nGeniusPULSE 3.8. The vulnerability is described as a weak file permissions issue in the product, with root cause related to improper/weak file access controls. Exploitation details are not provided in the connected documents; no explicit attack vectors or exploita...

9.1CVSS9.1AI score0.00255EPSS

Cvelist•added 2023/12/07 12:0 a.m.•16 views

CVE-2023-41168

NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability issue 1 of 4...

5.6AI score0.00569EPSS

Cvelist•added 2023/12/07 12:0 a.m.•12 views

CVE-2023-41905

NETSCOUT nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting XSS vulnerability by an authenticated user...

5.5AI score0.002EPSS

Cvelist•added 2023/12/07 12:0 a.m.•12 views

CVE-2023-40301

NETSCOUT nGeniusPULSE 3.8 has a Command Injection Vulnerability...

9.9AI score0.00756EPSS

CNNVD•added 2023/12/07 12:0 a.m.•1 views

NetScout nGeniusONE Cross-Site Scripting Vulnerability

NetScout nGeniusONE is a centralized application management and network performance solution from NetScout, Inc. A cross-site scripting vulnerability exists in NETSCOUT nGeniusONE version 6.3.4 build 2298, which can be exploited by an attacker to inject malicious script into a web site...

5.4CVSS5.3AI score0.002EPSS

Positive Technologies•added 2023/12/07 12:0 a.m.•3 views

PT-2023-27370 · Netscout · Netscout Ngeniuspulse

Name of the Vulnerable Software and Affected Versions: NETSCOUT nGeniusPULSE version 3.8 Description: The issue is related to weak file permissions. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was...

9.1CVSS9AI score0.00255EPSS

Exploits0References4

Cvelist•added 2023/12/07 12:0 a.m.•12 views

CVE-2023-40302

NETSCOUT nGeniusPULSE 3.8 has Weak File Permissions Vulnerability...

9.4AI score0.00255EPSS

CNNVD•added 2023/12/07 12:0 a.m.•2 views

NetScout nGeniusONE Security Vulnerability

5.4CVSS5.3AI score0.00475EPSS

OSV•added 2023/01/27 2:15 p.m.•0 views

CVE-2022-44715

Improper File Permissions in NetScout nGeniusONE 6.3.2 build 904 allows authenticated remote users to gain permissions via a crafted payload...

8.8CVSS5.8AI score

NVD•added 2023/01/27 2:15 p.m.•7 views

CVE-2022-44718

An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur issue 2 of 2. After successful login, an attacker must visit the vulnerable parameter and inject a crafted payload to successfully redirect to an unknown host. The attack vector is Network, and the Attack...

3.5CVSS3.9AI score0.0029EPSS

NVD•added 2023/01/27 2:15 p.m.•10 views

CVE-2022-44717

An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur issue 1 of 2. After successful login, an attacker must visit the vulnerable parameter and inject a crafted payload to successfully redirect to an unknown host. The attack vector is Network, and the Attack...

3.1CVSS3.8AI score0.0029EPSS

OSV•added 2023/01/27 2:15 p.m.•0 views

CVE-2022-44718

3.5CVSS5.8AI score