Mcafee

Network Security Manager

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2017-3961

  • EPSS 0.34%
  • Veröffentlicht 25.05.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:22

Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via crafted user input of att...

6.5

CVE-2017-3971

  • EPSS 0.07%
  • Veröffentlicht 04.04.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:23

Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to view confidential information via insecure use of RC4 encryption cyphers.

5.9

CVE-2017-3969

  • EPSS 0.23%
  • Veröffentlicht 04.04.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:23

Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows man-in-the-middle attackers to decrypt messages via an inadequate implementation of SSL.

6.1

CVE-2017-3967

  • EPSS 0.2%
  • Veröffentlicht 04.04.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:23

Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to inject arbitrary web script or HTML via application pages inability to break out of 3rd party HTM...

6.5

CVE-2017-3966

  • EPSS 0.22%
  • Veröffentlicht 04.04.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:23

Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to exploit or harm a user's browser via reusing the...

8.8

CVE-2017-3965

  • EPSS 0.18%
  • Veröffentlicht 04.04.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:22

Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to perform unauthorized tasks such as retrieving internal system informati...

5.4

CVE-2017-3964

  • EPSS 0.24%
  • Veröffentlicht 04.04.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:22

Reflective Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to inject arbitrary web script or HTML via a URL parameter.

9.8

CVE-2017-3972

  • EPSS 0.85%
  • Veröffentlicht 03.04.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:23

Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to execute arbitrary code via the server banner leaking potentially sensitive or security relevant in...

6.8

CVE-2014-2390

  • EPSS 0.11%
  • Veröffentlicht 29.08.2014 16:55:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site request forgery (CSRF) vulnerability in the User Management module in McAfee Network Security Manager (NSM) before 6.1.15.39 7.1.5.x before 7.1.5.15, 7.1.15.x before 7.1.15.7, 7.5.x before 7.5.5.9, and 8.x before 8.1.7.3 allows remote atta...