Cross site request forgery (csrf)

2017-10-3114:29:00

PRIOn knowledge base

www.prio-n.com

5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON

Embedding Script (XSS) in HTTP Headers vulnerability in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view confidential information via a cross site request forgery attack.

CPENameOperatorVersion
network_data_loss_preventioneq9.3.1
network_data_loss_preventioneq9.3.2
network_data_loss_preventioneq9.3.3
network_data_loss_preventioneq9.3.4
network_data_loss_preventioneq9.3.0

Name	Operator	Version
network_data_loss_prevention	eq	9.3.1
network_data_loss_prevention	eq	9.3.2
network_data_loss_prevention	eq	9.3.3
network_data_loss_prevention	eq	9.3.4
network_data_loss_prevention	eq	9.3.0