CVE-2022-41572

CVSS 9.8 CRITICALEPSS 0.6%CWE-276

An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Privilege escalation can be accomplished on the server because nmap can be run as root. The attacker achieves total control over the server.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/EyesOfNetworkCommunity/eonweb/issues/120 https://github.com/Orange-Cyberdefense/CVE-repository/