CVE-2014-8523Cross-Site Request Forgery in Network Data Loss Prevention

CWE-352Cross-Site Request Forgery3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
0.2%
top 63.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mcafee Network Data Loss Prevention
Timeline
PublishedOct 29
Latest updateMay 17

Description

Cross-site request forgery (CSRF) vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-v8hf-qmfq-rrhf: Cross-site request forgery (CSRF) vulnerability in McAfee Network Data Loss Prevention (NDLP) before 92022-05-17

📄Research Papers

1
arXiv
Few-Sample Named Entity Recognition for Security Vulnerability Reports by Fine-Tuning Pre-Trained Language Models2021-08-14