Overview
- Description
- NETSCOUT AirMagnet Enterprise 11.1.4 build 37257 and earlier has a sensor escalated privileges vulnerability that can be exploited to provide someone with administrative access to a sensor, with credentials to invoke a command to provide root access to the operating system. The attacker must complete a straightforward password-cracking exercise.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 8.1
- Impact score
- 5.9
- Exploitability score
- 2.2
- Vector string
- CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netscout:airmagnet_enterprise:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6DB48988-6A36-4464-81E6-ABE1B0FAA32A",
"versionEndIncluding": "11.1.4"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netscout:sensor4-r1s1w1-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2410556C-3BB2-4725-8997-95336BDD876C"
},
{
"criteria": "cpe:2.3:h:netscout:sensor4-r2s1-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4FDB1451-A5C3-41B3-BD87-6209063F20FA"
},
{
"criteria": "cpe:2.3:h:netscout:sensor4-r2s1-i:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D24C763D-D787-4753-A2E7-435C9CBFA52A"
},
{
"criteria": "cpe:2.3:h:netscout:sensor6-r1s0w1-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4C8BE027-EAA9-4A3C-B978-FF88B5C7C456"
},
{
"criteria": "cpe:2.3:h:netscout:sensor6-r2s1-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8AE3A340-A915-48C7-A4F5-1AC4CEFEE7BE"
},
{
"criteria": "cpe:2.3:h:netscout:sensor6-r2s1-i:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C1AA6C47-EB6A-48CB-A9F0-CF1E6C5E10E6"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]