PT-2023-14533 · Netscout · Ngeniusone
Lukasz Plonka
·
Published
2023-01-27
·
Updated
2025-03-28
·
CVE-2022-44715
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
NetScout nGeniusONE version 6.3.2 build 904
Description
The issue is related to improper file permissions, allowing authenticated remote users to gain permissions via a crafted payload.
Recommendations
For NetScout nGeniusONE version 6.3.2 build 904, consider restricting access to sensitive files and directories to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ngeniusone