cvedb.io
CVE-2017-3968
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-06-13T20:29:00.213 · Last modified 2026-06-17T01:19:12.200

Summary

Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie.

Affected products

mcafee — network_data_loss_prevention

Does this affect you?

Add your gear to cvedb and we'll alert you only when mcafee ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.