McAfee Web Gateway (MWG) - Directory Traversal vulnerability
CVE-2018-6677

7.6HIGH

Key Information:

Vendor: Mcafee
Status: Mcafee Web Gateway (mwg)
Vendor: CVE Published:; 23 July 2018

What is CVE-2018-6677?

Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to gain elevated privileges via unspecified vectors.

Affected Version(s)

McAfee Web Gateway (MWG) x86 7.8.1 < 7.8.1*

McAfee Web Gateway (MWG) x86 7.8.2 < 7.8.2*

References

http://www.securityfocus.com/bid/104893

vdb-entryx_refsource_BID

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 23, 2018
Vulnerability Reserved
Feb 6, 2018

Mcafee

What is CVE-2018-6677?

Affected Version(s)

References

CVSS V3.1

Timeline