Vulnerabilities > CVE-2020-28251 - Unspecified vulnerability in Netscout Airmagnet Enterprise 11.1.4

CVSS 8.1 - HIGH

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

netscout

NVD

Published: 2020-12-03

Updated: 2021-07-21

Summary

NETSCOUT AirMagnet Enterprise 11.1.4 build 37257 and earlier has a sensor escalated privileges vulnerability that can be exploited to provide someone with administrative access to a sensor, with credentials to invoke a command to provide root access to the operating system. The attacker must complete a straightforward password-cracking exercise.

Vulnerable Configurations

Part	Description	Count
Application	Netscout Netscout Airmagnet Enterprise 11.1.4	1
Hardware	Netscout Netscout Sensor4 R1S1W1 E - Netscout Sensor4 R2S1 E - Netscout Sensor4 R2S1 I - Netscout Sensor6 R1S0W1 E - Netscout Sensor6 R2S1 E - Netscout Sensor6 R2S1 I -	6

References

https://www.netscout.com/securityadvisories
https://www.netscout.com/products