Mcafee Network Security Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Mcafee Network Security Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (19)
CVE-2017-3965 — CVSS 8.8 (high): Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM)…
CVE-2017-3972 — CVSS 8.3 (high): Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows…
CVE-2017-3971 — CVSS 8.2 (high): Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to view…
CVE-2017-3969 — CVSS 8.2 (high): Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows…
CVE-2019-3606 — CVSS 7.7 (high): Data Leakage Attacks vulnerability in the web portal component when in an MDR pair in McAfee Network Security Management (NSM) 9.1 <…
CVE-2017-3968 — CVSS 7.5 (high): Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss…
CVE-2014-2390 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in the User Management module in McAfee Network Security Manager (NSM) before 6.1.15.39…
CVE-2017-3966 — CVSS 6.4 (medium): Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network Security…
CVE-2017-3967 — CVSS 6.1 (medium): Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote…
CVE-2017-3960 — CVSS 5.9 (medium): Exploitation of Authorization vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows…
CVE-2017-3962 — CVSS 5.6 (medium): Password recovery exploitation vulnerability in the non-certificate-based authentication mechanism in McAfee Network Security Management…
CVE-2018-6681 — CVSS 5.4 (medium): Abuse of Functionality vulnerability in the web interface in McAfee Network Security Management (NSM) 9.1.7.11 and earlier allows…
CVE-2021-4038 — CVSS 4.8 (medium): Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) prior to 10.1 Minor 7 allows a remote authenticated…
CVE-2019-3602 — CVSS 4.8 (medium): Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) Prior to 9.1 Update 5 allows an authenticated…
CVE-2020-7256 — CVSS 4.8 (medium): Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attackers to…
CVE-2020-7258 — CVSS 4.8 (medium): Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attackers to…
CVE-2017-3964 — CVSS 3.5 (low): Reflective Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2…
CVE-2017-3961 — CVSS 3.5 (low): Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows…