Vulnerability Details CVE-2014-6064
The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) before 7.3.2.9 and 7.4.x before 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.7%
CVSS Severity
CVSS v2 Score 4.0
References
- http://www.securitytracker.com/id/1030675
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95690
- https://kc.mcafee.com/corporate/index?page=content&id=SB10080
- http://www.securitytracker.com/id/1030675
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95690
- https://kc.mcafee.com/corporate/index?page=content&id=SB10080
Products affected by CVE-2014-6064
-
cpe:2.3:a:mcafee:web_gateway:7.3.0
-
cpe:2.3:a:mcafee:web_gateway:7.3.2
-
cpe:2.3:a:mcafee:web_gateway:7.3.2.4
-
cpe:2.3:a:mcafee:web_gateway:7.3.2.6
-
cpe:2.3:a:mcafee:web_gateway:7.3.2.8
-
cpe:2.3:a:mcafee:web_gateway:7.4.0
-
cpe:2.3:a:mcafee:web_gateway:7.4.1
-
cpe:2.3:a:mcafee:web_gateway:7.4.1.3