CVE-2021-35199

Name of the Vulnerable Software and Affected Versions: NETSCOUT nGeniusONE version 6.3.0 build 1196 and earlier

Description: The issue allows Stored Cross-Site Scripting (XSS) in the UploadFile feature. This means an attacker can inject malicious scripts into the system, which can then be executed by other users, potentially leading to unauthorized access or control.

Recommendations: For NETSCOUT nGeniusONE version 6.3.0 build 1196 and earlier, consider disabling the UploadFile feature until a patch is available to prevent potential exploitation. Restrict access to the UploadFile functionality to minimize the risk of Stored Cross-Site Scripting attacks. At the moment, there is no information about a newer version that contains a fix for this issue.