CVE-2017-3966
6.4
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:H/A:H
Summary
Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to exploit or harm a user's browser via reusing the exposed session token in the application URL.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| McAfee | Network Security Management (NSM) | 8.2 < 8.2.7.42.2 | affected |
Weaknesses
- Exploitation of session variables, resource IDs and other trusted credentials vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.