exploitDog

CVE-2011-5100

Опубликовано: 22 авг. 2012

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The web interface in McAfee Firewall Reporter before 5.1.0.13 does not properly implement cookie authentication, which allows remote attackers to obtain access, and disable anti-virus functionality, via an HTTP request.

Ссылки

https://kc.mcafee.com/corporate/index?page=content&id=SB10015
Vendor Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10015
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mcafee:firewall_reporter:*:*:*:*:*:*:*:*

Версия до 5.1.0.6 (включая)

EPSS

Процентиль: 60%

0.00395

Низкий

7.5 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-842w-g3x4-648j

github

больше 3 лет назад

The web interface in McAfee Firewall Reporter before 5.1.0.13 does not properly implement cookie authentication, which allows remote attackers to obtain access, and disable anti-virus functionality, via an HTTP request.

EPSS

Процентиль: 60%

0.00395

Низкий

7.5 High

CVSS2

Дефекты

CWE-287