CVE-2020-7292

Summary

Inappropriate Encoding for output context vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows a remote attacker to cause MWG to return an ambiguous redirect response via getting a user to click on a malicious URL.

Affected Software

VendorProductVersion RangeStatus
McAfeeMcAfee Web Gateway (MWG)unspecified < 9.2.1affected

Weaknesses

  • CWE-838: CWE-838 Inappropriate Encoding for output context

ADP Enrichment

CVE Program Container

Additional References

References