First published: Wed Oct 29 2014(Updated: )
McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to obtain sensitive information via vectors related to open network ports.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
McAfee Network Data Loss Prevention | <=9.2.2 | |
McAfee Network Data Loss Prevention | =8.6 | |
McAfee Network Data Loss Prevention | =9.2.0 | |
McAfee Network Data Loss Prevention | =9.2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2014-8520 is classified as a medium severity vulnerability due to its potential to expose sensitive information.
To fix CVE-2014-8520, upgrade your McAfee Network Data Loss Prevention to version 9.3 or later.
CVE-2014-8520 affects McAfee Network Data Loss Prevention versions 8.6, 9.2.0, 9.2.1, and 9.2.2 and prior.
CVE-2014-8520 allows remote attackers to obtain sensitive information through improperly secured network ports.
Disabling unused network ports and implementing strict access controls can serve as a temporary workaround for CVE-2014-8520.