Unrated severityNVD Advisory· Published Aug 14, 2019· Updated Aug 4, 2024
MWG Proxy: Cross-Frame Scripting vulnerability
CVE-2019-3635
Description
Exfiltration of Data in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows attackers to obtain sensitive data via crafting a complex webpage that will trigger the Web Gateway to block the user accessing an iframe.
Affected products
2- Range: < 7.8.2.12
- McAfee, LLC/McAfee Web Gateway (MWG)v5Range: 7.8.2.x
Patches
Vulnerability mechanics
References
1- kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.