exploitDog

CVE-2019-3665

Опубликовано: 03 дек. 2019

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

Code Injection vulnerability in the web interface in McAfee Web Advisor (WA) prior to 4.1.1.48 allows remote unauthenticated attacker to allow the browser to render a website which Web Advisor would normally have blocked via a carefully crafted web site.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mcafee:webadvisor:*:*:*:*:*:*:*:*

Версия до 4.1.1.48 (исключая)

EPSS

Процентиль: 65%

0.00493

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-mq78-57jv-92wc

github

больше 3 лет назад

Code Injection vulnerability in the web interface in McAfee Web Advisor (WA) prior to 4.1.1.48 allows remote unauthenticated attacker to allow the browser to render a website which Web Advisor would normally have blocked via a carefully crafted web site.

EPSS

Процентиль: 65%

0.00493

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-94