Mcafee

Network Security Manager

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8

CVE-2021-4038

  • EPSS 0.14%
  • Veröffentlicht 09.12.2021 16:15:08
  • Zuletzt bearbeitet 21.11.2024 06:36:46

Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) prior to 10.1 Minor 7 allows a remote authenticated administrator to embed a XSS in the administrator interface via specially crafted custom rules containing HTML. NSM ...

4.8

CVE-2020-7258

  • EPSS 0.28%
  • Veröffentlicht 18.03.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 05:36:56

Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attackers to unspecified impact via unspecified vectors.

4.8

CVE-2020-7256

  • EPSS 0.28%
  • Veröffentlicht 18.03.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 05:36:56

Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attackers to unspecified impact via unspecified vectors.

4.8

CVE-2019-3602

  • EPSS 0.27%
  • Veröffentlicht 15.05.2019 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:42:14

Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) Prior to 9.1 Update 5 allows an authenticated administrator to embed an XSS in the administrator interface via a specially crafted custom rule containing HTML.

4.1

CVE-2019-3606

  • EPSS 0.03%
  • Veröffentlicht 26.03.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:42:14

Data Leakage Attacks vulnerability in the web portal component when in an MDR pair in McAfee Network Security Management (NSM) 9.1 < 9.1.7.75 (Update 4) and 9.2 < 9.2.7.31 Update2 allows administrators to view configuration information in plain text ...

9.8

CVE-2019-3597

  • EPSS 0.42%
  • Veröffentlicht 26.03.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:42:13

Authentication Bypass vulnerability in McAfee Network Security Manager (NSM) 9.1 < 9.1.7.75.2 and 9.2 < 9.2.7.31 (9.2 Update 2) allows unauthenticated users to gain administrator rights via incorrect handling of expired GUI sessions.

5.4

CVE-2018-6681

  • EPSS 0.22%
  • Veröffentlicht 17.07.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:05

Abuse of Functionality vulnerability in the web interface in McAfee Network Security Management (NSM) 9.1.7.11 and earlier allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via appliance web interface.

9.1

CVE-2017-3968

  • EPSS 0.54%
  • Veröffentlicht 13.06.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:23

Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the...

8.8

CVE-2017-3960

  • EPSS 0.15%
  • Veröffentlicht 12.06.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:22

Exploitation of Authorization vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to gain elevated privileges via a crafted HTTP request parameter.

9.8

CVE-2017-3962

  • EPSS 0.05%
  • Veröffentlicht 12.06.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:22

Password recovery exploitation vulnerability in the non-certificate-based authentication mechanism in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to crack user passwords via unsalted hashes.