First published: Tue Jun 26 2018(Updated: )
Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remote attackers to execute arbitrary code via Java management extensions (JMX).
Credit: psirt@mcafee.com
Affected Software | Affected Version | How to fix |
---|---|---|
McAfee Web Gateway | >=7.8.1.0<=7.8.1.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-6667 is considered to have a high severity due to the potential for remote code execution.
To mitigate CVE-2018-6667, upgrade McAfee Web Gateway to version 7.8.1.6 or later.
CVE-2018-6667 affects McAfee Web Gateway versions 7.8.1.0 through 7.8.1.5.
CVE-2018-6667 exploits an authentication bypass vulnerability in the administrative user interface.
Yes, CVE-2018-6667 can allow remote attackers to gain unauthorized access and execute arbitrary code.