Cross site scripting

2019-09-1216:15:00

PRIOn knowledge base

www.prio-n.com

8.9 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.1%

JSON

Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway (MWG) 7.8.x prior to 7.8.2.13 allows remote attackers to collect sensitive information or execute commands with the MWG administrator’s credentials via tricking the administrator to click on a carefully constructed malicious link.

CPENameOperatorVersion
web_gatewayge7.8.2
web_gatewaylt7.8.2.13
web_gatewayge8.0.0
web_gatewaylt8.2.0

Name	Operator	Version
web_gateway	ge	7.8.2
web_gateway	lt	7.8.2.13
web_gateway	ge	8.0.0
web_gateway	lt	8.2.0

References

kc.mcafee.com/corporate/index?page=content&id=SB10294