Cross site request forgery (csrf)

2014-08-2916:55:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

33.4%

JSON

Cross-site request forgery (CSRF) vulnerability in the User Management module in McAfee Network Security Manager (NSM) before 6.1.15.39 7.1.5.x before 7.1.5.15, 7.1.15.x before 7.1.15.7, 7.5.x before 7.5.5.9, and 8.x before 8.1.7.3 allows remote attackers to hijack the authentication of users for requests that modify user accounts via unspecified vectors.

CPENameOperatorVersion
network_security_managerge6.1.15
network_security_managerlt6.1.15.39
network_security_managerge7.1.5
network_security_managerlt7.1.5.15
network_security_managerge7.1.15
network_security_managerlt7.1.15.7
network_security_managerge7.5.5
network_security_managerlt7.5.5.9
network_security_managerge8.1.7
network_security_managerlt8.1.7.3

Name	Operator	Version
network_security_manager	ge	6.1.15
network_security_manager	lt	6.1.15.39
network_security_manager	ge	7.1.5
network_security_manager	lt	7.1.5.15
network_security_manager	ge	7.1.15
network_security_manager	lt	7.1.15.7
network_security_manager	ge	7.5.5
network_security_manager	lt	7.5.5.9
network_security_manager	ge	8.1.7
network_security_manager	lt	8.1.7.3