Lucene search
+L

110 matches found

NVD
NVD
added 2017/05/17 9:29 p.m.17 views

CVE-2017-4012

Privilege Escalation vulnerability in the server in McAfee Network Data Loss Prevention NDLP 9.3.x allows remote authenticated users to view confidential information via modification of the HTTP request...

6.5CVSS6.1AI score0.01259EPSS
Exploits0References2
NVD
NVD
added 2017/05/17 9:29 p.m.20 views

CVE-2017-4016

Web Server method disclosure in the server in McAfee Network Data Loss Prevention NDLP 9.3.x allows remote attackers to exploit and find another hole via HTTP response header...

5.3CVSS5.3AI score0.01049EPSS
Exploits0References2
Prion
Prion
added 2017/05/17 9:29 p.m.16 views

Information disclosure

Banner Disclosure in the server in McAfee Network Data Loss Prevention NDLP 9.3.x allows remote attackers to obtain product information via HTTP response header...

5CVSS5.2AI score0.01049EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/05/17 9:29 p.m.21 views

Design/Logic Flaw

Web Server method disclosure in the server in McAfee Network Data Loss Prevention NDLP 9.3.x allows remote attackers to exploit and find another hole via HTTP response header...

5CVSS5.3AI score0.01049EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/05/17 9:0 p.m.23 views

CVE-2017-4012

Privilege Escalation vulnerability in the server in McAfee Network Data Loss Prevention NDLP 9.3.x allows remote authenticated users to view confidential information via modification of the HTTP request...

6.2AI score0.01259EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/05/17 9:0 p.m.25 views

CVE-2017-4014

Session Side jacking vulnerability in the server in McAfee Network Data Loss Prevention NDLP 9.3.x allows remote authenticated users to view, add, and remove users via modification of the HTTP request...

7.5AI score0.00861EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/05/17 9:0 p.m.24 views

CVE-2017-4015

Clickjacking vulnerability in the server in McAfee Network Data Loss Prevention NDLP 9.3.x allows remote authenticated users to inject arbitrary web script or HTML via HTTP response header...

4.5AI score0.01067EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/05/17 9:0 p.m.30 views

CVE-2017-4016

Web Server method disclosure in the server in McAfee Network Data Loss Prevention NDLP 9.3.x allows remote attackers to exploit and find another hole via HTTP response header...

5.3AI score0.01049EPSS
Exploits0References2
CVE
CVE
added 2017/05/17 9:0 p.m.57 views

CVE-2017-4015

CVE-2017-4015 affects McAfee Network Data Loss Prevention (NDLP) 9.3.x. A remote authenticated attacker can hijack the victim’s click actions by sending specially crafted HTTP response headers to inject arbitrary web scripts/HTML. Root cause: improper validation of user-supplied HTTP response hea...

4.5CVSS4.5AI score0.01067EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/05/17 9:0 p.m.72 views

CVE-2017-4011

McAfee Network Data Loss Prevention (NDLP) 9.3.x is affected by a Cross‑Site Scripting (XSS) vulnerability in the server (notably via the User‑Agent header as per the nuclei template) that allowed remote attackers to view session/cookie data by modifying HTTP requests. Exploitation details are pr...

6.1CVSS6.1AI score0.03271EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/05/17 9:0 p.m.53 views

CVE-2017-4016

CVE-2017-4016 affects McAfee Network Data Loss Prevention (NDLP) 9.3.x. The Web server allows information disclosure through HTTP response headers, enabling remote attackers to reveal additional vulnerabilities via the header leakage. CVSS data indicates network access with low privileges and par...

5.3CVSS5.3AI score0.01049EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/05/17 9:0 p.m.52 views

CVE-2017-4012

CVE-2017-4012 affects McAfee Network Data Loss Prevention (NDLP) server components in NDLP 9.3.x. The vulnerability allows remote authenticated users to view confidential information by modifying an HTTP request, constituting a privilege-escalation issue. Documents consistently describe impact as...

6.5CVSS6AI score0.01259EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/05/17 9:0 p.m.51 views

CVE-2017-4014

CVE-2017-4014 affects McAfee Network Data Loss Prevention (NDLP) 9.3.x. The vulnerability is described as a session-side hijack in the server, allowing remote authenticated users to view, add, and remove users by modifying HTTP requests. Affected component is the server implementation of NDLP 9.3...

8CVSS7.4AI score0.00861EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/05/17 9:0 p.m.64 views

CVE-2017-4013

CVE-2017-4013 concerns the McAfee Network Data Loss Prevention (NDLP) server. The connected sources describe a banner/info-disclosure vulnerability in NDLP 9.3.x where remote attackers can obtain product information through HTTP response headers. No details about vulnerable subsystems, exact root...

5.3CVSS5.1AI score0.01049EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/05/17 9:0 p.m.59 views

CVE-2017-4017

McAfee Network Data Loss Prevention (NDLP) 9.3.x contains an information disclosure vulnerability in the server implementation that allows remote attackers to view user information via the appliance web interface. Public sources in connected documents corroborate that an attacker can exploit the ...

5.3CVSS5.2AI score0.01049EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2014/10/29 2:55 p.m.20 views

CVE-2014-8535

McAfee Network Data Loss Prevention NDLP before 9.2.2 allows local users to bypass intended restriction on unspecified functionality via unknown vectors...

4.6CVSS6.3AI score0.00317EPSS
Exploits0References1
NVD
NVD
added 2014/10/29 2:55 p.m.30 views

CVE-2014-8534

Unspecified vulnerability in the login form in McAfee Network Data Loss Prevention NDLP before 9.2.2 allows local users to cause a denial of service via a crafted value in the domain field...

2.1CVSS6.1AI score0.00293EPSS
Exploits0References1
NVD
NVD
added 2014/10/29 2:55 p.m.19 views

CVE-2014-8537

McAfee Network Data Loss Prevention NDLP before 9.2.2 allows local users to obtain sensitive information by reading the logs...

2.1CVSS5.8AI score0.0033EPSS
Exploits0References3
NVD
NVD
added 2014/10/29 2:55 p.m.16 views

CVE-2014-8536

McAfee Network Data Loss Prevention NDLP before 9.2.2 allows local users to obtain sensitive information by reading unspecified error messages...

2.1CVSS5.8AI score0.0033EPSS
Exploits0References3
NVD
NVD
added 2014/10/29 2:55 p.m.26 views

CVE-2014-8526

McAfee Network Data Loss Prevention NDLP before 9.3 allows local users to obtain sensitive information by reading a Java stack trace...

2.1CVSS5.8AI score0.00371EPSS
Exploits0References1
Rows per page
Query Builder