Mcafee

Network Security Manager

19 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2017-3961

  • EPSS 0.34%
  • Published 25.05.2018 13:29:00
  • Last modified 21.11.2024 03:26:22

Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via crafted user input of att...

6.5

CVE-2017-3971

  • EPSS 0.07%
  • Published 04.04.2018 13:29:00
  • Last modified 21.11.2024 03:26:23

Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to view confidential information via insecure use of RC4 encryption cyphers.

5.9

CVE-2017-3969

  • EPSS 0.24%
  • Published 04.04.2018 13:29:00
  • Last modified 21.11.2024 03:26:23

Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows man-in-the-middle attackers to decrypt messages via an inadequate implementation of SSL.

6.1

CVE-2017-3967

  • EPSS 0.2%
  • Published 04.04.2018 13:29:00
  • Last modified 21.11.2024 03:26:23

Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to inject arbitrary web script or HTML via application pages inability to break out of 3rd party HTM...

6.5

CVE-2017-3966

  • EPSS 0.22%
  • Published 04.04.2018 13:29:00
  • Last modified 21.11.2024 03:26:23

Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to exploit or harm a user's browser via reusing the...

8.8

CVE-2017-3965

  • EPSS 0.19%
  • Published 04.04.2018 13:29:00
  • Last modified 21.11.2024 03:26:22

Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to perform unauthorized tasks such as retrieving internal system informati...

5.4

CVE-2017-3964

  • EPSS 0.24%
  • Published 04.04.2018 13:29:00
  • Last modified 21.11.2024 03:26:22

Reflective Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to inject arbitrary web script or HTML via a URL parameter.

9.8

CVE-2017-3972

  • EPSS 0.9%
  • Published 03.04.2018 22:29:00
  • Last modified 21.11.2024 03:26:23

Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to execute arbitrary code via the server banner leaking potentially sensitive or security relevant in...

6.8

CVE-2014-2390

  • EPSS 0.11%
  • Published 29.08.2014 16:55:10
  • Last modified 12.04.2025 10:46:40

Cross-site request forgery (CSRF) vulnerability in the User Management module in McAfee Network Security Manager (NSM) before 6.1.15.39 7.1.5.x before 7.1.5.15, 7.1.15.x before 7.1.15.7, 7.5.x before 7.5.5.9, and 8.x before 8.1.7.3 allows remote atta...