High severity8.0NVD Advisory· Published May 17, 2017· Updated May 13, 2026

CVE-2017-4014

Description

Session Side jacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view, add, and remove users via modification of the HTTP request.

Affected products

McAfee/Network Data Loss Prevention
cpe:2.3:a:mcafee:network_data_loss_prevention:*:*:*:*:*:*:*:*
Range: <=9.3.0
McAfee/Network Data Loss Prevention (NDLP)v5
Range: 9.3.x

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kc.mcafee.com/corporate/indexnvdVendor Advisory
www.securitytracker.com/id/1038523nvd

News mentions

No linked articles in our index yet.

cvss	0.520
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000