Vulnerability Details CVE-2017-3969
Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows man-in-the-middle attackers to decrypt messages via an inadequate implementation of SSL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.8%
CVSS Severity
CVSS v3 Score 8.2
CVSS v2 Score 4.3
References
Products affected by CVE-2017-3969
-
cpe:2.3:a:mcafee:network_security_manager:6.1.15
-
cpe:2.3:a:mcafee:network_security_manager:6.1.15.38
-
cpe:2.3:a:mcafee:network_security_manager:6.1.15.39
-
cpe:2.3:a:mcafee:network_security_manager:7.1.15
-
cpe:2.3:a:mcafee:network_security_manager:7.1.15.6
-
cpe:2.3:a:mcafee:network_security_manager:7.1.15.7
-
cpe:2.3:a:mcafee:network_security_manager:7.1.5
-
cpe:2.3:a:mcafee:network_security_manager:7.1.5.14
-
cpe:2.3:a:mcafee:network_security_manager:7.1.5.15
-
cpe:2.3:a:mcafee:network_security_manager:7.5.5
-
cpe:2.3:a:mcafee:network_security_manager:7.5.5.8
-
cpe:2.3:a:mcafee:network_security_manager:7.5.5.9
-
cpe:2.3:a:mcafee:network_security_manager:8.1.7
-
cpe:2.3:a:mcafee:network_security_manager:8.1.7.2
-
cpe:2.3:a:mcafee:network_security_manager:8.1.7.3