CVE-2014-8525 in Network Data Loss Preventioninformação

Sumário

de MITRE

McAfee Network Data Loss Prevention (NDLP) before 9.3 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservar

29/10/2014

Divulgação

29/10/2014

Moderação

aceite

Entrada

VDB-68088

CPE

pronto

EPSS

0.01354

KEV

não

Atividades

muito baixo

Fontes

Do you know our Splunk app?

Download it now for free!