Vulnerabilities > Netscout > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-01-27 CVE-2022-44026 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.2
An issue was discovered in NetScout nGeniusONE 6.3.2 before P10.
network
low complexity
netscout CWE-79
6.1
6.1
2023-01-27 CVE-2022-44027 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.2
An issue was discovered in NetScout nGeniusONE 6.3.2 before P10.
network
low complexity
netscout CWE-79
6.1
6.1
2023-01-27 CVE-2022-44028 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.2
An issue was discovered in NetScout nGeniusONE 6.3.2 before P10.
network
low complexity
netscout CWE-79
6.1
6.1
2023-01-27 CVE-2022-44029 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.2
An issue was discovered in NetScout nGeniusONE 6.3.2 before P10.
network
low complexity
netscout CWE-79
6.1
6.1
2021-09-30 CVE-2021-35198 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.0
NETSCOUT nGeniusONE 6.3.0 build 1004 and earlier allows Stored Cross-Site Scripting (XSS) in the Packet Analysis module.
network
low complexity
netscout CWE-79
5.4
5.4
2021-09-30 CVE-2021-35199 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.0
NETSCOUT nGeniusONE 6.3.0 build 1196 and earlier allows Stored Cross-Site Scripting (XSS) in UploadFile.
network
low complexity
netscout CWE-79
5.4
5.4
2021-09-30 CVE-2021-35200 Cross-site Scripting vulnerability in Netscout Ngeniusone 6.3.0
NETSCOUT nGeniusONE 6.3.0 build 1196 allows high-privileged users to achieve Stored Cross-Site Scripting (XSS) in FDSQueryService.
network
low complexity
netscout CWE-79
4.8
4.8
2021-09-30 CVE-2021-35201 XXE vulnerability in Netscout Ngeniusone 6.3.0
NEI in NETSCOUT nGeniusONE 6.3.0 build 1196 allows XML External Entity (XXE) attacks.
network
low complexity
netscout CWE-611
6.5
6.5
2021-09-30 CVE-2021-35202 Incorrect Permission Assignment for Critical Resource vulnerability in Netscout Ngeniusone 6.3.0
NETSCOUT Systems nGeniusONE 6.3.0 build 1196 allows Authorization Bypass (to access an endpoint) in FDSQueryService.
network
low complexity
netscout CWE-732
4.3
4.3
2021-09-30 CVE-2021-35203 Files or Directories Accessible to External Parties vulnerability in Netscout Ngeniusone 6.3.0
NETSCOUT Systems nGeniusONE 6.3.0 build 1196 allows Arbitrary File Read operations via the FDSQueryService endpoint.
network
low complexity
netscout CWE-552
5.7
5.7