Cross-Site Scripting Vulnerability in McAfee Network Data Loss Prevention Product
CVE-2014-8521

Currently unrated

Key Information:

Vendor: Mcafee
Status: Network Data Loss Prevention
Vendor: CVE Published:; 29 October 2014

Summary

A cross-site scripting (XSS) vulnerability exists in McAfee Network Data Loss Prevention (NDLP) prior to version 9.3. This flaw allows remote authenticated users to inject arbitrary web scripts or HTML into affected systems through unspecified vectors. The successful exploitation of this vulnerability could lead to unauthorized access to sensitive information, as well as the ability to execute malicious scripts in the context of other users.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 29, 2014