CVE-2019-3615

Data Leakage Attacks vulnerability in the web interface in McAfee Database Security prior to the 4.6.6 March 2019 update allows local users to expose passwords via incorrectly auto completing password fields in the admin browser login screen.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:database_security:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:42

Type Values Removed Values Added
CVSS v2 : 2.1
v3 : 6.8
v2 : 2.1
v3 : 5.3
References () http://www.securityfocus.com/bid/107385 - () http://www.securityfocus.com/bid/107385 -
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10277 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10277 -

07 Nov 2023, 03:10

Type Values Removed Values Added
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10277 - Patch, Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10277 -
References (BID) http://www.securityfocus.com/bid/107385 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/107385 -

Information

Published : 2019-03-12 21:29

Updated : 2024-11-21 04:42


NVD link : CVE-2019-3615

Mitre link : CVE-2019-3615

CVE.ORG link : CVE-2019-3615


JSON object : View

Products Affected

mcafee

  • database_security
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor