Vulnerabilities > Mcafee > Network Data Loss Prevention > 9.3.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-06-13 | CVE-2017-3968 | Session Fixation vulnerability in Mcafee products Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie. | 9.1 |
2017-10-31 | CVE-2017-3933 | Cross-site Scripting vulnerability in Mcafee Network Data Loss Prevention Embedding Script (XSS) in HTTP Headers vulnerability in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view confidential information via a cross site request forgery attack. | 5.4 |