CVE-2014-8521 — Cross-Site Request Forgery in Network Data Loss Prevention
Severity
3.5LOWNVD
EPSS
0.1%
top 71.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 29
Latest updateMay 17
Description
Cross-site scripting (XSS) vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVSS vector
AV:N/AC:M/C:N/I:P/A:NExploitability: 6.8 | Impact: 2.9
Affected Packages1 packages
🔴Vulnerability Details
1GHSA▶
GHSA-gxj5-32g8-7m3j: Cross-site scripting (XSS) vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9↗2022-05-17