22 matches found
EUVD-2019-13237
Malware in sbrugna...
EUVD-2019-13232
Malware in sbrugna...
EUVD-2014-2426
Malware in sbrugna...
EUVD-2021-33938
Malicious code in bioql PyPI...
CVE-2019-3602
Cross Site Scripting XSS vulnerability in McAfee Network Security Manager NSM Prior to 9.1 Update 5 allows an authenticated administrator to embed an XSS in the administrator interface via a specially crafted custom rule containing HTML...
CVE-2019-3597
Authentication Bypass vulnerability in McAfee Network Security Manager NSM 9.1 9.1.7.75.2 and 9.2 9.2.7.31 9.2 Update 2 allows unauthenticated users to gain administrator rights via incorrect handling of expired GUI sessions...
CVE-2021-4038
Cross Site Scripting XSS vulnerability in McAfee Network Security Manager NSM prior to 10.1 Minor 7 allows a remote authenticated administrator to embed a XSS in the administrator interface via specially crafted custom rules containing HTML. NSM did not correctly sanitize custom rule content in a...
CVE-2021-4038 NSM vulnerable to XSS
Cross Site Scripting XSS vulnerability in McAfee Network Security Manager NSM prior to 10.1 Minor 7 allows a remote authenticated administrator to embed a XSS in the administrator interface via specially crafted custom rules containing HTML. NSM did not correctly sanitize custom rule content in a...
CVE-2020-7336
Cross Site Request Forgery vulnerability in McAfee Network Security Management NSM prior to 10.1.7.35 and NSM 9.x prior to 9.2.9.55 may allow an attacker to change the configuration of the Network Security Manager via a carefully crafted HTTP request...
CVE-2019-3602
Cross Site Scripting XSS vulnerability in McAfee Network Security Manager NSM Prior to 9.1 Update 5 allows an authenticated administrator to embed an XSS in the administrator interface via a specially crafted custom rule containing HTML...
CVE-2019-3597
Authentication Bypass vulnerability in McAfee Network Security Manager NSM 9.1 9.1.7.75.2 and 9.2 9.2.7.31 9.2 Update 2 allows unauthenticated users to gain administrator rights via incorrect handling of expired GUI sessions...
CVE-2019-3606 Data leakage when in an MDR pair by McAfee Network Security Manager 9.x
Data Leakage Attacks vulnerability in the web portal component when in an MDR pair in McAfee Network Security Management NSM 9.1 9.1.7.75 Update 4 and 9.2 9.2.7.31 Update2 allows administrators to view configuration information in plain text format via the GUI or GUI terminal commands...
CVE-2019-3597 Authentication bypass in McAfee Network Security Manager 9.x
Authentication Bypass vulnerability in McAfee Network Security Manager NSM 9.1 9.1.7.75.2 and 9.2 9.2.7.31 9.2 Update 2 allows unauthenticated users to gain administrator rights via incorrect handling of expired GUI sessions...
McAfee Network Security Manager Sensitive Information Disclosure Vulnerability
McAfee Network Security Manager is a network security management program. A sensitive information disclosure vulnerability exists in McAfee Network Security Manager, which allows remote attackers to exploit the vulnerability by submitting a special request to obtain sensitive information...
McAfee Network Security Manager and Network Data Loss Prevention Session Fixation Vulnerability
McAfee Network Security Manager NSM and Network Data Loss Prevention NDLP are both products from McAfee, Inc. McAfee Network Security Manager NSM is a network security solution that monitors in real time the deployment of McAfee Intrusion Prevention Systems throughout the network. network Data Lo...
CVE-2017-3968
Session fixation vulnerability in the web interface in McAfee Network Security Manager NSM before 8.2.7.42.2 and McAfee Network Data Loss Prevention NDLP before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie...
CVE-2017-3968
Session fixation vulnerability in the web interface in McAfee Network Security Manager NSM before 8.2.7.42.2 and McAfee Network Data Loss Prevention NDLP before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie...
CVE-2017-3968 McAfee Network Security Management (NSM) and Network Data Loss Prevention (NDLP)- Password recovery exploitation vulnerability
Session fixation vulnerability in the web interface in McAfee Network Security Manager NSM before 8.2.7.42.2 and McAfee Network Data Loss Prevention NDLP before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie...
CVE-2014-2390
Cross-site request forgery CSRF vulnerability in the User Management module in McAfee Network Security Manager NSM before 6.1.15.39 7.1.5.x before 7.1.5.15, 7.1.15.x before 7.1.15.7, 7.5.x before 7.5.5.9, and 8.x before 8.1.7.3 allows remote attackers to hijack the authentication of users for...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the User Management module in McAfee Network Security Manager NSM before 6.1.15.39 7.1.5.x before 7.1.5.15, 7.1.15.x before 7.1.15.7, 7.5.x before 7.5.5.9, and 8.x before 8.1.7.3 allows remote attackers to hijack the authentication of users for...