CVE-2019-3597

Summary

Authentication Bypass vulnerability in McAfee Network Security Manager (NSM) 9.1 < 9.1.7.75.2 and 9.2 < 9.2.7.31 (9.2 Update 2) allows unauthenticated users to gain administrator rights via incorrect handling of expired GUI sessions.

Affected Software

VendorProductVersion RangeStatus
McAfee LLCMcAfee Network Security Manager (NSM)9.1 < 9.1.7.75.2affected
McAfee LLCMcAfee Network Security Manager (NSM)9.2 < 9.2.7.31 (9.2 Update 2)affected

Weaknesses

  • Authentication Bypass vulnerability

ADP Enrichment

CVE Program Container

Additional References

References