Login Vulnerability in McAfee Enterprise Mobility Manager Product
CVE-2012-4589

Currently unrated

Key Information:

Vendor: Mcafee
Status: Enterprise Mobility Manager
Vendor: CVE Published:; 22 August 2012

What is CVE-2012-4589?

The Portal's 'Login.aspx' component in McAfee Enterprise Mobility Manager prior to version 10.0 lacks an 'autocomplete' attribute for certain form fields. This oversight allows remote attackers to exploit unattended workstations, potentially leading to unauthorized access. The vulnerability highlights the importance of proper input management and user session control to protect sensitive information.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/78223

vdb-entryx_refsource_XF

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 22, 2012
Vulnerability Reserved
Aug 22, 2012

JSON

Mcafee

What is CVE-2012-4589?

References

Timeline