CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-3597

Authentication Bypass vulnerability in McAfee Network Security Manager (NSM) 9.1 < 9.1.7.75.2 and 9.2 < 9.2.7.31 (9.2 Update 2) allows unauthenticated users to gain administrator rights via incorrect handling of expired GUI sessions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.5%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/107609
https://kc.mcafee.com/corporate/index?page=content&id=SB10275
http://www.securityfocus.com/bid/107609
https://kc.mcafee.com/corporate/index?page=content&id=SB10275

Products affected by CVE-2019-3597

Mcafee » Network Security Manager » Version: 9.1

cpe:2.3:a:mcafee:network_security_manager:9.1
Mcafee » Network Security Manager » Version: 9.1.5.9

cpe:2.3:a:mcafee:network_security_manager:9.1.5.9
Mcafee » Network Security Manager » Version: 9.1.7.11

cpe:2.3:a:mcafee:network_security_manager:9.1.7.11
Mcafee » Network Security Manager » Version: 9.2

cpe:2.3:a:mcafee:network_security_manager:9.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-3597

Products

Pricing

Contact Us