Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Mcafee Subscribe
Filtered by product Network Data Loss Prevention

CVSS v3 Filter

ALL
NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 8 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-4012 1 Mcafee 1 Network Data Loss Prevention 2019-10-03 5.0 MEDIUM 6.5 MEDIUM
Privilege Escalation vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view confidential information via modification of the HTTP request.
CVE-2017-3934 1 Mcafee 1 Network Data Loss Prevention 2017-11-21 4.3 MEDIUM 5.9 MEDIUM
Missing HTTP Strict Transport Security state information vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows man-in-the-middle attackers to expose confidential data via read files on the webserver.
CVE-2017-3933 1 Mcafee 1 Network Data Loss Prevention 2017-11-18 3.5 LOW 5.4 MEDIUM
Embedding Script (XSS) in HTTP Headers vulnerability in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view confidential information via a cross site request forgery attack.
CVE-2017-4015 1 Mcafee 1 Network Data Loss Prevention 2017-07-08 3.5 LOW 4.5 MEDIUM
Clickjacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to inject arbitrary web script or HTML via HTTP response header.
CVE-2017-4016 1 Mcafee 1 Network Data Loss Prevention 2017-07-08 5.0 MEDIUM 5.3 MEDIUM
Web Server method disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to exploit and find another hole via HTTP response header.
CVE-2017-4017 1 Mcafee 1 Network Data Loss Prevention 2017-07-08 5.0 MEDIUM 5.3 MEDIUM
User Name Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to view user information via the appliance web interface.
CVE-2017-4011 1 Mcafee 1 Network Data Loss Prevention 2017-07-08 4.3 MEDIUM 6.1 MEDIUM
Embedding Script (XSS) in HTTP Headers vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to get session/cookie information via modification of the HTTP request.
CVE-2017-4013 1 Mcafee 1 Network Data Loss Prevention 2017-07-08 5.0 MEDIUM 5.3 MEDIUM
Banner Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to obtain product information via HTTP response header.