Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SB10192 - Network Security Management (NSM) - Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability
Vulnerability Description
Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to perform unauthorized tasks such as retrieving internal system information or manipulating the database via specially crafted URLs.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
McAfee Network Security Management 跨站请求伪造漏洞
Vulnerability Description
McAfee Network Security Management(NSM)是美国迈克菲(McAfee)公司的一套能够实时监控整个网络中已部署的迈克菲入侵防护系统的网络安全解决方案。 McAfee NSM 8.2.7.42.2之前版本中的Web界面存在跨站请求伪造漏洞。远程攻击者可借助特制的URLs利用该漏洞执行未授权的操作(如:检索内部系统信息或操作数据库)。
CVSS Information
N/A
Vulnerability Type
N/A