H4Kneto

**Name of the Vulnerable Software and Affected Versions** EyesOfNetwork eonweb versions 5.1 through 5.3 before 5.3-3 **Description** An issue was discovered in the eonweb web interface, which is prone to a SQL injection. This allows an unauthenticated attacker to perform various tasks, such as authentication bypass via the `user id` field in a cookie. **Recommendations** For EyesOfNetwork eonweb versions 5.1 through 5.3 before 5.3-3, update to version 5.3-3 or later to resolve the issue. As a temporary workaround, consider restricting access to the eonweb web interface to minimize the risk of exploitation. Avoid using the `user id` field in cookies until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** EyesOfNetwork version 5.3 EyesOfNetwork API version 2.4.2 **Description** An issue was discovered that allows an unauthenticated attacker to perform various tasks, including authentication bypass via the `username` field. This is due to SQL injection in the API. **Recommendations** For EyesOfNetwork version 5.3, update the EyesOfNetwork API to a version that is not prone to SQL injection. For EyesOfNetwork API version 2.4.2, consider disabling the `getApiKey` function in include/api functions.php until a patch is available. Restrict access to the `username` field to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** EyesOfNetwork version 5.3 **Description** The issue is related to insufficient access control in the /etc/sudoers component of the EyesOfNetwork (EON) system and network monitoring tool. This can be exploited to escalate privileges, allowing an attacker to execute arbitrary commands as root using crafted NSE scripts for nmap. **Recommendations** For EyesOfNetwork version 5.3, consider restricting access to the sudoers configuration and limiting the ability to run arbitrary commands as root until a patch is available. As a temporary workaround, restrict the use of NSE scripts to minimize the risk of exploitation.