Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to perform unauthorized tasks such as retrieving internal system information or manipulating the database via specially crafted URLs.
References
Configurations
History
21 Nov 2024, 03:26
Type | Values Removed | Values Added |
---|---|---|
References | () https://kc.mcafee.com/corporate/index?page=content&id=SB10192 - |
07 Nov 2023, 02:44
Type | Values Removed | Values Added |
---|---|---|
References | () https://kc.mcafee.com/corporate/index?page=content&id=SB10192 - |
Information
Published : 2018-04-04 13:29
Updated : 2024-11-21 03:26
NVD link : CVE-2017-3965
Mitre link : CVE-2017-3965
CVE.ORG link : CVE-2017-3965
JSON object : View
Products Affected
mcafee
- network_security_manager
CWE
CWE-352
Cross-Site Request Forgery (CSRF)