Primary

Context

EyesOfNetwork Privilege Escalation Vulnerability via Nmap

Vulnerability

Patched

A privilege escalation vulnerability has been identified in EyesOfNetwork (EON) versions through 5.3.11. This issue arises because Nmap can be executed with root privileges, allowing an attacker to gain complete control over the server.

Impact

Exploitation of this vulnerability leads to unauthorized privilege escalation, allowing an attacker to gain root access and full control over the affected server.

Reproduction

The vulnerability can be reproduced by running Nmap on a server with EyesOfNetwork installed. Since Nmap is allowed to run as root, this could be done by an authenticated user or potentially an unauthenticated user, depending on the server's configuration.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

10.0

exploitability

5.2

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

10.0

exploitability

5.2

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

EyesOfNetwork Privilege Escalation Vulnerability via Nmap

Vulnerability

Impact

Reproduction

Affected Products

EyesOfNetwork

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating