Cross-Site Scripting Vulnerability in McAfee Email Gateway
CVE-2015-1619

Currently unrated

Key Information:

Vendor: Mcafee
Status: Email Gateway
Vendor: CVE Published:; 17 February 2015

Summary

The cross-site scripting vulnerability in McAfee Email Gateway allows remote authenticated users to exploit the Secure Web Mail Client interface. This is achieved through the injection of arbitrary web scripts or HTML into Digest messages, affecting various versions of the product. The vulnerability can lead to unauthorized actions, data exposure, or malicious content execution in the context of the affected user's session.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 17, 2015