Lucene search

[email protected]CVE-2014-8528

HistoryOct 29, 2014 - 2:55 p.m.

CVE-2014-8528

2014-10-2914:55:00

CWE-200

[email protected]

web.nvd.nist.gov

mcafee

ndlp

cve-2014-8528

data loss prevention

security

vulnerability

6.5 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

McAfee Network Data Loss Prevention (NDLP) before 9.3 logs session IDs, which allows local users to obtain sensitive information by reading the audit log.

CPENameOperatorVersion
mcafee:network_data_loss_preventionmcafee network data loss preventioneq9.2.0
mcafee:network_data_loss_preventionmcafee network data loss preventionle9.2.2
mcafee:network_data_loss_preventionmcafee network data loss preventioneq9.2.1
mcafee:network_data_loss_preventionmcafee network data loss preventioneq8.6

CPE	Name	Operator	Version
mcafee:network_data_loss_prevention	mcafee network data loss prevention	eq	9.2.0
mcafee:network_data_loss_prevention	mcafee network data loss prevention	le	9.2.2
mcafee:network_data_loss_prevention	mcafee network data loss prevention	eq	9.2.1
mcafee:network_data_loss_prevention	mcafee network data loss prevention	eq	8.6

References

kc.mcafee.com/corporate/index?page=content&id=SB10053

6.5 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2014-8528

cvelist1 prion1