Improper access control vulnerability in McAfee WebAdvisor Chrome and Edge browser extensions up to 8.1.0.1895 allows a remote attacker to gain access to McAfee WebAdvisor settings and other details about the user’s system. This could lead to unexpected behaviors including; settings being changed, fingerprinting of the system leading to targeted scams, and not triggering the malicious software if McAfee software is detected.
References
Configurations
History
21 Nov 2024, 06:39
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 6.5 |
References | () https://service.mcafee.com/?articleId=TS103273&page=shell&shell=article-view - |
07 Nov 2023, 03:41
Type | Values Removed | Values Added |
---|---|---|
CWE | ||
References | () https://service.mcafee.com/?articleId=TS103273&page=shell&shell=article-view - |
Information
Published : 2022-03-10 23:15
Updated : 2024-11-21 06:39
NVD link : CVE-2022-0815
Mitre link : CVE-2022-0815
CVE.ORG link : CVE-2022-0815
JSON object : View
Products Affected
mcafee
- webadvisor
CWE
CWE-668
Exposure of Resource to Wrong Sphere