Vulnerabilities > Netscout

DATE CVE VULNERABILITY TITLE RISK
2024-01-09 CVE-2023-26998 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.4
Cross Site Scripting vulnerability found in NetScoutnGeniusOne v.6.3.4 allows a remote attacker to execute arbitrary code via the creator parameter of the Alert Configuration page.
network
low complexity
netscout CWE-79
5.4
2024-01-09 CVE-2023-26999 XXE vulnerability in Netscout Ngeniusone 6.3.4
An issue found in NetScout nGeniusOne v.6.3.4 allows a remote attacker to execute arbitrary code and cause a denial of service via a crafted file.
network
low complexity
netscout CWE-611
critical
9.8
2024-01-09 CVE-2023-27000 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.4
Cross Site Scripting vulnerability found in NetScoutnGeniusOne v.6.3.4 allows a remote attacker to execute arbitrary code via the name parameter of the Profile and Exclusion List page(s).
network
low complexity
netscout CWE-79
6.1
2023-12-07 CVE-2023-40300 Use of Hard-coded Credentials vulnerability in Netscout Ngeniuspulse 3.8.00.2349.0
NETSCOUT nGeniusPULSE 3.8 has a Hardcoded Cryptographic Key.
network
low complexity
netscout CWE-798
critical
9.8
2023-12-07 CVE-2023-40301 Command Injection vulnerability in Netscout Ngeniuspulse 3.8.00.2349.0
NETSCOUT nGeniusPULSE 3.8 has a Command Injection Vulnerability.
network
low complexity
netscout CWE-77
critical
9.8
2023-12-07 CVE-2023-40302 Incorrect Permission Assignment for Critical Resource vulnerability in Netscout Ngeniuspulse 3.8.00.2349.0
NETSCOUT nGeniusPULSE 3.8 has Weak File Permissions Vulnerability
network
low complexity
netscout CWE-732
critical
9.1
2023-12-07 CVE-2023-41168 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.4
NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability (issue 1 of 4).
network
low complexity
netscout CWE-79
5.4
2023-12-07 CVE-2023-41169 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.4
NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability (issue 2 of 4).
network
low complexity
netscout CWE-79
5.4
2023-12-07 CVE-2023-41170 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.4
NetScout nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting vulnerability.
network
low complexity
netscout CWE-79
6.1
2023-12-07 CVE-2023-41171 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.4
NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability (issue 3 of 4).
network
low complexity
netscout CWE-79
5.4