Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SB10192 - Network Security Management (NSM) - Exploitation of session variables, resource IDs and other trusted credentials vulnerability
Vulnerability Description
Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to exploit or harm a user's browser via reusing the exposed session token in the application URL.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
McAfee Network Security Management 安全漏洞
Vulnerability Description
McAfee Network Security Management(NSM)是美国迈克菲(McAfee)公司的一套能够实时监控整个网络中已部署的迈克菲入侵防护系统的网络安全解决方案。 McAfee NSM 8.2.7.42.2之前版本中的Web界面存在安全漏洞,该漏洞源于程序在应用程序URL中传递会话令牌。远程攻击者可通过重新使用暴露在应用程序URL中的会话令牌利用该漏洞使用或损坏用户浏览器。
CVSS Information
N/A
Vulnerability Type
N/A