CVE-2014-1473: CSRF
First published: Thu Jan 16 2014(Updated: )
Multiple cross-site request forgery (CSRF) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to hijack the authentication of users for requests that modify HTML via unspecified vectors related to the "response web page."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| McAfee Vulnerability Manager | <=7.5.5 | |
| McAfee Vulnerability Manager | =7.0.11 | |
| McAfee Vulnerability Manager | =7.5.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/mcafee
- canonical/mcafee vulnerability manager
- version/mcafee vulnerability manager/7.5.5
- version/mcafee vulnerability manager/7.0.11
- version/mcafee vulnerability manager/7.5.4