Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2014/03/25 12:0 a.m.31 views

McAfee Cloud Single Sign On < 4.0.1 Information Disclosure (SB10066) (Windows)

A version of McAfee Cloud Single Sign On MCSSO prior to 4.0.1 is installed on the remote host. It is, therefore, affected by an information disclosure vulnerability due to a failure to sanitize user-supplied input, resulting in potential directory traversal. An attacker could potentially exploit...

4.3CVSS5.6AI score0.02393EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2014/03/25 12:0 a.m.23 views

McAfee Cloud Single Sign On < 4.0.1 Information Disclosure (SB10066) (McAfee Linux OS)

A version of McAfee Cloud Single Sign On MCSSO prior to 4.0.1 is installed on the remote host. It is, therefore, affected by an information disclosure vulnerability due to a failure to sanitize user-supplied input, resulting in a potential directory traversal. An attacker could potentially exploi...

4.3CVSS5.6AI score0.02393EPSS
Exploits1References3
NVD
NVD
added 2014/03/18 5:4 p.m.27 views

CVE-2014-2536

Directory traversal vulnerability in McAfee Cloud Identity Manager 3.0, 3.1, and 3.5.1, McAfee Cloud Single Sign On MCSSO before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1 and 2.5 allows remote authenticated users to read an unspecified file containing a hash of the administrator passwo...

4.3CVSS6.2AI score0.02393EPSS
Exploits1References4
CVE
CVE
added 2014/03/18 2:0 p.m.57 views

CVE-2014-2536

CVE-2014-2536 affects McAfee Cloud Identity Manager 3.0/3.1/3.5.1, McAfee Cloud Single Sign On (MCSSO) before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1/2.5. The vulnerability is a directory traversal that allows remote authenticated users to read an unspecified file containing a hash o...

4.3CVSS6.3AI score0.02393EPSS
Exploits1References4Affected Software3
seebug.org
seebug.org
added 2014/03/18 12:0 a.m.32 views

McAfee Cloud Single Sign On目录遍历漏洞

CVE ID: CVE-2014-2536 McAfee Cloud Single Sign On是一款基于云的单点登录解决方案。 McAfee Cloud Single Sign On不正确过滤用户提交的输入,允许远程攻击者利用漏洞提交特制的目录遍历请求,读取任意文件内容。 0 McAfee Cloud Single Sign On formerly McAfee Cloud Identity Manager 4.x McAfee Cloud Single Sign On 4.0.1已经修复该漏洞,建议用户下载更新:...

4.3CVSS0.1AI score0.02393EPSS
Exploits1
Rows per page
Query Builder