nGeniusONE
by Netscout
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-32980 | Cri | 0.64 | 9.8 | 0.00 | Apr 25, 2025 | NETSCOUT nGeniusONE before 6.4.0 P11 b3245 has a Weak Sudo Configuration. | ||
| CVE-2025-32979 | 0.00 | — | 0.00 | Apr 25, 2025 | NETSCOUT nGeniusONE before 6.4.0 b2350 allows Arbitrary File Creation by authenticated users. | |||
| CVE-2025-32981 | 0.00 | — | 0.00 | Apr 25, 2025 | NETSCOUT nGeniusONE before 6.4.0 b2350 allows local users to leverage Insecure Permissions for the nGeniusCLI File. | |||
| CVE-2025-32983 | 0.00 | — | 0.00 | Apr 25, 2025 | NETSCOUT nGeniusONE before 6.4.0 b2350 allows Technical Information Disclosure via a Stack Trace. | |||
| CVE-2025-32984 | 0.00 | — | 0.00 | Apr 25, 2025 | NETSCOUT nGeniusONE before 6.4.0 b2350 allows Stored Cross-Site Scripting (XSS) via a certain POST parameter. | |||
| CVE-2025-32982 | 0.00 | — | 0.00 | Apr 25, 2025 | NETSCOUT nGeniusONE before 6.4.0 b2350 has a Broken Authorization Schema for the report module. | |||
| CVE-2025-32986 | 0.00 | — | 0.00 | Apr 25, 2025 | NETSCOUT nGeniusONE before 6.4.0 b2350 has a Sensitive File Accessible Without Proper Authentication to an endpoint. | |||
| CVE-2025-32985 | 0.00 | — | 0.00 | Apr 25, 2025 | NETSCOUT nGeniusONE before 6.4.0 b2350 has Hardcoded Credentials that can be obtained from JAR files. |
- risk 0.64cvss 9.8epss 0.00
NETSCOUT nGeniusONE before 6.4.0 P11 b3245 has a Weak Sudo Configuration.
- CVE-2025-32979Apr 25, 2025risk 0.00cvss —epss 0.00
NETSCOUT nGeniusONE before 6.4.0 b2350 allows Arbitrary File Creation by authenticated users.
- CVE-2025-32981Apr 25, 2025risk 0.00cvss —epss 0.00
NETSCOUT nGeniusONE before 6.4.0 b2350 allows local users to leverage Insecure Permissions for the nGeniusCLI File.
- CVE-2025-32983Apr 25, 2025risk 0.00cvss —epss 0.00
NETSCOUT nGeniusONE before 6.4.0 b2350 allows Technical Information Disclosure via a Stack Trace.
- CVE-2025-32984Apr 25, 2025risk 0.00cvss —epss 0.00
NETSCOUT nGeniusONE before 6.4.0 b2350 allows Stored Cross-Site Scripting (XSS) via a certain POST parameter.
- CVE-2025-32982Apr 25, 2025risk 0.00cvss —epss 0.00
NETSCOUT nGeniusONE before 6.4.0 b2350 has a Broken Authorization Schema for the report module.
- CVE-2025-32986Apr 25, 2025risk 0.00cvss —epss 0.00
NETSCOUT nGeniusONE before 6.4.0 b2350 has a Sensitive File Accessible Without Proper Authentication to an endpoint.
- CVE-2025-32985Apr 25, 2025risk 0.00cvss —epss 0.00
NETSCOUT nGeniusONE before 6.4.0 b2350 has Hardcoded Credentials that can be obtained from JAR files.