Vulnerability Details CVE-2012-4595
McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote attackers to bypass authentication and obtain an admin session ID via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.securitytracker.com/id?1027444
- https://exchange.xforce.ibmcloud.com/vulnerabilities/77977
- https://kc.mcafee.com/corporate/index?page=content&id=SB10026
- http://www.securitytracker.com/id?1027444
- https://exchange.xforce.ibmcloud.com/vulnerabilities/77977
- https://kc.mcafee.com/corporate/index?page=content&id=SB10026
Products affected by CVE-2012-4595
-
cpe:2.3:a:mcafee:email_and_web_security:5.5
-
cpe:2.3:a:mcafee:email_and_web_security:5.6
-
cpe:2.3:a:mcafee:email_gateway:7.0.0
-
cpe:2.3:a:mcafee:email_gateway:7.0.1