CVE-2022-41572

critical

Description

An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Privilege escalation can be accomplished on the server because nmap can be run as root. The attacker achieves total control over the server.

References

https://github.com/Orange-Cyberdefense/CVE-repository/

https://github.com/EyesOfNetworkCommunity/eonweb/issues/120

Details

Source: Mitre, NVD

Published: 2025-01-07

Updated: 2025-06-13

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00069