CVE-2020-7292
4.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Summary
Inappropriate Encoding for output context vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows a remote attacker to cause MWG to return an ambiguous redirect response via getting a user to click on a malicious URL.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| McAfee | McAfee Web Gateway (MWG) | unspecified < 9.2.1 | affected |
Weaknesses
- CWE-838: CWE-838 Inappropriate Encoding for output context
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.