Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to perform unauthorized tasks such as retrieving internal system information or manipulating the database via specially crafted URLs.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HMcafee Network Security Manager
APPMcafee< 8.2.7.42.2
Related vulnerabilities
Data Leakage Attacks vulnerability in the web portal component when in an MDR pair in McAfee Network Security ...
Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2...
Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before...
Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2...
Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (N...