Unrated severityNVD Advisory· Published Jun 3, 2021· Updated Aug 3, 2024
Incorrect access to deleted scripts vulnerability in McAfee DBSec
CVE-2021-31831
Description
Incorrect access to deleted scripts vulnerability in McAfee Database Security (DBSec) prior to 4.8.2 allows a remote authenticated attacker to gain access to signed SQL scripts which have been marked as deleted or expired within the administrative console. This access was only available through the REST API.
Affected products
2<4.8.2+ 1 more
- (no CPE)range: <4.8.2
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.