Cross-Site Scripting Vulnerability in McAfee Email and Web Security Products
CVE-2012-4580

Currently unrated

Key Information:

Vendor: Mcafee
Status: Email And Web Security; Email Gateway
Vendor: CVE Published:; 22 August 2012

Summary

This vulnerability in McAfee Email and Web Security products allows remote attackers to inject arbitrary web scripts or HTML through the McAfee Security Appliance Management Console/Dashboard. Exploiting this weakness can lead to unauthorized actions being executed in the context of the affected user, posing significant security risks for users of these products.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 22, 2012