CVE-2017-4014

high

Description

Session Side jacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view, add, and remove users via modification of the HTTP request.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB10198

http://www.securitytracker.com/id/1038523

Details

Source: Mitre, NVD

Published: 2017-05-17

Updated: 2025-04-20

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.004

Detections

Analytics