PT-2023-14533 · Netscout · Ngeniusone

Lukasz Plonka

Publicado

2023-01-27

Atualizado

2025-03-28

CVE-2022-44715

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions NetScout nGeniusONE version 6.3.2 build 904

Description The issue is related to improper file permissions, allowing authenticated remote users to gain permissions via a crafted payload.

Recommendations For NetScout nGeniusONE version 6.3.2 build 904, consider restricting access to sensitive files and directories to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Permission

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-732

Identificadores relacionados

CVE-2022-44715

Produtos afetados

Ngeniusone

PT-2023-14533 · Netscout · Ngeniusone

CVE-2022-44715

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6