McAfee Vulnerability Manager 7.5.5 cross site scripting

A vulnerability was found in McAfee Vulnerability Manager 7.5.5. It has been rated as problematic. This issue affects some unknown processing. Upgrading to version 7.0.11.05002_EM, 7.5.4.05007_EM or 7.5.5.05002_EM eliminates this vulnerability. Applying the patch SB10061 is able to eliminate this problem. The bugfix is ready for download at update.foundstone.com. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published before and not just after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

168
019

Field

exploit_price_0day2
source_nessus_risk1
vulnerability_cvss2_nvd_basescore1
source_sectracker1
source_openvas_family1

Commit Conf

100%65
90%11
60%5
80%4
70%2

Approve Conf

100%65
90%11
60%5
80%4
70%2
IDCommitedUserFieldChangeRemarksAcceptedReasonC
1131589106/09/2021VulD...nessus_riskMediumtenable.com06/09/2021accepted
70
1131589006/09/2021VulD...cvss2_nvd_basescore4.3nist.gov06/09/2021accepted
90
1131588906/09/2021VulD...price_0day$5k-$25ksee exploit price documentation06/09/2021accepted
90
1131588806/09/2021VulD...sectracker1029591cve.mitre.org06/09/2021accepted
70
96015105/19/2017VulD...openvas_familyGeneral05/19/2017accepted
100
96015005/19/2017VulD...openvas_titleMcAfee Vulnerability Manager Multiple Vulnerabilities05/19/2017accepted
100
96014905/19/2017VulD...openvas_filenamegb_mcafee_vm_mult_vuln.nasl05/19/2017accepted
100
96014805/19/2017VulD...openvas_id80061905/19/2017accepted
100
96014705/19/2017VulD...nessus_date1392768000 (02/19/2014)tenable.com05/19/2017accepted
100
96014605/19/2017VulD...nessus_familyWindowstenable.com05/19/2017accepted
100
96014505/19/2017VulD...nessus_filenamemcafee_vulnerability_manager_xss_vulns.nasltenable.com05/19/2017accepted
100
96014405/19/2017VulD...nessus_nameMcAfee Vulnerability Manager Enterprise Manager Multiple Vulnerabilities (SB10061)tenable.com05/19/2017accepted
100
96014205/19/2017VulD...xforce_riskMedium Riskibmcloud.com05/19/2017accepted
100
96014105/19/2017VulD...xforce_identifiermcafee-vm-unspec-xssibmcloud.com05/19/2017accepted
100
96014005/19/2017VulD...xforce_titleMcAfee Vulnerability Manager cross-site scriptingibmcloud.com05/19/2017accepted
100
96013805/19/2017VulD...vulnerabilitycenter_reportingdate1389830400vulnerabilitycenter.com05/19/2017accepted
100
96013705/19/2017VulD...vulnerabilitycenter_lastupdate1393113600vulnerabilitycenter.com05/19/2017accepted
100
96013605/19/2017VulD...vulnerabilitycenter_creationdate1390435200vulnerabilitycenter.com05/19/2017accepted
100
96013505/19/2017VulD...vulnerabilitycenter_severityMediumvulnerabilitycenter.com05/19/2017accepted
100
96013405/19/2017VulD...vulnerabilitycenter_titleMcAfee Vulnerability Manager <=7.5.5 Remote XSS Vulnerabilityvulnerabilitycenter.com05/19/2017accepted
100

67 more entries are not shown

Do you know our Splunk app?

Download it now for free!