Описание
McAfee IntruShield Security Management System allows remote authenticated users to access the "Generate Reports" feature and modify alerts by setting the Access option to true, as demonstrated using the (1) fullAccess or (2) fullAccessRight parameter in reports-column-center.jsp, or (3) fullAccess parameter to SystemEvent.jsp.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:h:mcafee:intrushield_security_management_system:*:*:*:*:*:*:*:*
EPSS
Процентиль: 54%
0.00312
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
McAfee IntruShield Security Management System allows remote authenticated users to access the "Generate Reports" feature and modify alerts by setting the Access option to true, as demonstrated using the (1) fullAccess or (2) fullAccessRight parameter in reports-column-center.jsp, or (3) fullAccess parameter to SystemEvent.jsp.
EPSS
Процентиль: 54%
0.00312
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other