CVE-2017-3965
8.8
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to perform unauthorized tasks such as retrieving internal system information or manipulating the database via specially crafted URLs.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| McAfee | Network Security Management (NSM) | 8.2 < 8.2.7.42.2 | affected |
Weaknesses
- Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.