Lucene search
China National Vulnerability DatabaseCNVD-2021-93630HistoryNov 24, 2021 - 12:00 a.m.
McAfee Policy Auditor Cross-Site Scripting Vulnerability
2021-11-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
18
mcafee policy auditor
cross-site scripting
vulnerability
it assessment
scap
security audits
remote attacker
uid parameters
EPSS
0.001
Percentile
37.8%
McAfee Policy Auditor is an agent-based IT assessment solution that leverages the Security Content Automation Protocol (SCAP) to automate the processes required for internal and external IT and security audits.A reflective cross-site scripting vulnerability exists in versions of McAfee Policy Auditor prior to 6.5.2. A remote unauthenticated attacker could exploit the vulnerability to inject arbitrary Web script or HTML via UID request parameters.
Related
cve
cve
CVE-2021-31852
2021-11-23 20:15:10
cvelist
cvelist
CVE-2021-31852 Cross-Site Scripting vulnerability in Policy Auditor
2021-11-23 19:16:50
nvd
nvd
CVE-2021-31852
2021-11-23 20:15:10
prion
prion
Cross site scripting
2021-11-23 20:15:00
nessus
nessus
McAfee Policy Auditor Agent < 6.5.2 Multiple Vulnerabilities (SB10372)
2021-12-13 00:00:00