Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:LMcafee Network Data Loss Prevention
APPMcafee< 9.3.4.1.5Mcafee Network Security Manager
APPMcafee< 8.2.7.42.2
Powiązane podatności
Data Leakage Attacks vulnerability in the web portal component when in an MDR pair in McAfee Network Security ...
Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2...
Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Se...
Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before...
Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (N...