CVE-2017-3968
published 2018-06-13CVE-2017-3968: Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP)…
PriorityP349critical9.1CVSS 3.0
AVNACLPRNUINSUCHIHAN
EPSS
1.50%
71.0th percentile
Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mcafee | network_data_loss_prevention | < 9.3.4.1.5 | 9.3.4.1.5 |
| mcafee | network_data_loss_prevention | >= 9.3 < 9.3.4.1.5 Hotfix 1201697_47868 | 9.3.4.1.5 Hotfix 1201697_47868 |
| mcafee | network_security_management | >= 8 < 8.2.7.42.2 | 8.2.7.42.2 |
| mcafee | network_security_manager | < 8.2.7.42.2 | 8.2.7.42.2 |
| sudo_project | sudo | >= 0 < 1.8.9p5-1ubuntu1.5+esm1 | 1.8.9p5-1ubuntu1.5+esm1 |
CVSS provenance
nvdv3.09.1CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:P/A:N
osv8.2HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wp6v-87jv-h5gr: Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8
ghsa_unreviewed·2022-05-13
CVE-2017-3968 [CRITICAL] CWE-384 GHSA-wp6v-87jv-h5gr: Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8
Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie.
OSV
sudo vulnerability
osv·2019-05-29·CVSS 8.2
CVE-2017-1000368 sudo vulnerability
sudo vulnerability
USN-3968-1 fixed a vulnerability in Sudo. This update provides
the corresponding update for Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that Sudo did not properly parse the contents of
/proc/[pid]/stat when attempting to determine its controlling tty. A local
attacker in some configurations could possibly use this to overwrite any
file on the filesystem, bypassing intended permissions. (CVE-2017-1000368)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2018-06-13
Published