Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee network security manager vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2017-3960
Exploitation of Authorization vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows authenticated users to gain elevated privileges via a crafted HTTP request parameter.
Mcafee Network Security Manager
5
CVSSv2
CVE-2017-3962
Password recovery exploitation vulnerability in the non-certificate-based authentication mechanism in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows malicious users to crack user passwords via unsalted hashes.
Mcafee Network Security Manager
3.5
CVSSv2
CVE-2017-3961
Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via crafted user input of attributes.
Mcafee Network Security Manager
3.5
CVSSv2
CVE-2017-3964
Reflective Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows malicious users to inject arbitrary web script or HTML via a URL parameter.
Mcafee Network Security Manager
6.8
CVSSv2
CVE-2017-3965
Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows remote malicious users to perform unauthorized tasks such as retrieving internal system information or manipulating the...
Mcafee Network Security Manager
4.3
CVSSv2
CVE-2017-3967
Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows remote malicious users to inject arbitrary web script or HTML via application pages inability to break out of 3rd party HTML frames.
Mcafee Network Security Manager
4.3
CVSSv2
CVE-2017-3969
Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows man-in-the-middle malicious users to decrypt messages via an inadequate implementation of SSL.
Mcafee Network Security Manager
4
CVSSv2
CVE-2017-3971
Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows malicious users to view confidential information via insecure use of RC4 encryption cyphers.
Mcafee Network Security Manager
6.5
CVSSv2
CVE-2017-3966
Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows remote malicious users to exploit or harm a user's browser via reusing the exposed session ...
Mcafee Network Security Manager
7.5
CVSSv2
CVE-2017-3972
Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows malicious users to execute arbitrary code via the server banner leaking potentially sensitive or security relevant information.
Mcafee Network Security Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »