Описание
Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to inject arbitrary web script or HTML via application pages inability to break out of 3rd party HTML frames.
Уязвимые конфигурации
Конфигурация 1Версия до 8.2.7.42.2 (исключая)
cpe:2.3:a:mcafee:network_security_manager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00196
Низкий
6.1 Medium
CVSS3
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 6.1
github
больше 3 лет назад
Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to inject arbitrary web script or HTML via application pages inability to break out of 3rd party HTML frames.
EPSS
Процентиль: 42%
0.00196
Низкий
6.1 Medium
CVSS3
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-94