VYPR
Unrated severityNVD Advisory· Published Sep 12, 2019· Updated Aug 4, 2024

Web Gateway (MWG) - Reflected Cross Site Scripting vulnerability

CVE-2019-3638

Description

Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway (MWG) 7.8.x prior to 7.8.2.13 allows remote attackers to collect sensitive information or execute commands with the MWG administrator's credentials via tricking the administrator to click on a carefully constructed malicious link.

Affected products

2
  • McAfee/Web Gatewayllm-fuzzy2 versions
    >=7.8.0, <7.8.2.13+ 1 more
    • (no CPE)range: >=7.8.0, <7.8.2.13
    • (no CPE)range: 7.8.x

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.