Cross-Site Scripting Vulnerabilities in McAfee Vulnerability Manager
CVE-2014-1472

Currently unrated

Key Information:

Vendor: Mcafee
Status: Vulnerability Manager
Vendor: CVE Published:; 16 January 2014

Summary

The McAfee Vulnerability Manager (MVM) suffers from multiple cross-site scripting (XSS) vulnerabilities. These security flaws allow remote attackers to inject arbitrary web scripts or HTML through unspecified vectors, potentially compromising the integrity and confidentiality of affected systems. Users are urged to apply available patches and use protective measures to mitigate the associated risks.

References

http://secunia.com/advisories/56394

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/64795

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1029591

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 16, 2014
Vulnerability Reserved
Jan 15, 2014