CVE-2018-6681

Abuse of Functionality vulnerability in the web interface in McAfee Network Security Management (NSM) 9.1.7.11 and earlier allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via appliance web interface.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:network_security_manager:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:11

Type Values Removed Values Added
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10244 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10244 -

07 Nov 2023, 03:00

Type Values Removed Values Added
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10244 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10244 -

Information

Published : 2018-07-17 13:29

Updated : 2024-11-21 04:11


NVD link : CVE-2018-6681

Mitre link : CVE-2018-6681

CVE.ORG link : CVE-2018-6681


JSON object : View

Products Affected

mcafee

  • network_security_manager
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')