Unauthorized Access Vulnerability in McAfee Network Data Loss Prevention Database
CVE-2014-8522

Currently unrated

Key Information:

Vendor: Mcafee
Status: Network Data Loss Prevention
Vendor: CVE Published:; 29 October 2014

Summary

A vulnerability exists in the MySQL database component of McAfee Network Data Loss Prevention prior to version 9.3, which fails to enforce password protection for database access. This oversight allows remote attackers to gain unauthorized access to the database, potentially leading to data breaches and the exploitation of sensitive information. Organizations utilizing affected versions of McAfee NDLP are at risk of encountering severe security challenges due to this flaw.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 29, 2014