厂商或团体 mcafee 的搜索结果 (234)

CVE-2018-6660(发布:2018-04-02 09:29:00)NM
CVSS4.0

[原文]Directory Traversal vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows administrators to use Windows alternate data streams, which could be used to bypass the file extensions, via not properly validating the path when exporting a particular XML file.

CVE-2018-6661(发布:2018-04-02 09:29:00)NM
CVSS6.8

[原文]DLL Side-Loading vulnerability in Microsoft Windows Client in McAfee True Key before 4.20.110 allows local users to gain privilege elevation via not verifying a particular DLL file signature.

CVE-2017-3933(发布:2017-10-31 10:29:00)NMS
CVSS3.5

[原文]Embedding Script (XSS) in HTTP Headers vulnerability in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view confidential information via a cross site request forgery attack.

CVE-2017-3934(发布:2017-10-31 10:29:00)NMS
CVSS4.3

[原文]Missing HTTP Strict Transport Security state information vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows man-in-the-middle attackers to expose confidential data via read files on the webserver.

CVE-2017-3935(发布:2017-10-31 10:29:00)NM
CVSS5.0

[原文]Network Data Loss Prevention is vulnerable to MIME type sniffing which allows older versions of Internet Explorer to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the intended content type.

CVE-2017-3897(发布:2017-09-01 09:29:00)NMS
CVSS7.5

[原文]A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee Live Safe versions prior to 16.0.3 and McAfee Security Scan Plus (MSS+) versions prior to 3.11.599.3 allows network attackers to perform a malicious file execution via a HTTP backend-response.

首页上一页12345678下一页尾页 第3页 / 共39页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站